Info

Disclosure

Jul 06, 2006

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

Linux Kernel contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when an error occurs during handling of core dumps by the 'prctl' function. This flaw may allow privilege escalation and lead to a loss of Integrity.

Classification

Location: Local Access Required
Attack Type: Other
Impact: Loss of Integrity
Exploit: Exploit Commercial
Disclosure: OSVDB Verified, Vendor Verified

Solution

Upgrade to version 2.6.17.4 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Linux

Kernel

2.6

References

CVE ID: 2006-2451 (see also: NVD)
Secunia Advisory ID: 20953 20965 20986 20991 21179 21498 21966
SCIP VulDB ID: 2360
VUPEN Advisory: ADV-2006-2699
Mail List Post: http://archives.neohapsis.com/archives/dailydave/2006-q3/0018.html
http://archives.neohapsis.com/archives/fulldisclosure/2006-07/0234.html
Generic Exploit URL: http://immunitysec.com
http://www.rs-labs.com/exploitsntools/rs_prctl_kernel.c
Vendor Specific News/Changelog Entry: http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.17.4
Vendor Specific Advisory URL: http://lists.suse.com/archive/suse-security-announce/2006-Aug/0005.html
http://lists.suse.com/archive/suse-security-announce/2006-Jul/0008.html
http://support.avaya.com/elmodocs2/security/ASA-2006-162.htm
http://www.ubuntu.com/usn/usn-311-1
Other Advisory URL: https://issues.rpath.com/browse/RPL-488
RedHat RHSA: RHSA-2006:0574

Credit

Red Hat, Inc. - Red Hat, Inc.

Direct URL: http://osvdb.org/27030