[Full-disclosure] [Dailydave] What RedHat doesn't want you toknow about ExecShield (without NX)
gary sweet
gary.sweet.11 at gmail.com
Tue May 15 02:36:11 BST 2007
Brad Spengler wrote:
>>> The problem is there's nothing you can do about my attack,
>> There are likely similar attacks to the NULL ptr issue. Its just a
>> well known/predictable invalid pointer dereference.
> The attack I was referring to was the SELinux disabling, not the kernel exploit which allowed
> me to disable SELinux, although it is also since it's highly unlikely that PaX's UDEREF will be
> implemented in Fedora/RHEL there will be nothing you can do about the class of bugs you
> mention either.
This coming from someone who spends his time 'hunting for Linux kernel
vulnerabilities' .. bravo Brad :rolleyes:
Full-Disclosure is hosted and sponsored by Secunia.