thr3ads.net - freebsd security - Happy Birthday FreeBSD! Now you are 20 years old and your security is the same as 20 years ago... :) [Jun 2013]

If this information is useful, please help other people find it:
Share via:

Hunger

2013-Jun-19 21:32 UTC

Happy Birthday FreeBSD! Now you are 20 years old and your security is the same as 20 years ago... :)

$ uname -a
FreeBSD fbsd91x64 9.1-RELEASE FreeBSD 9.1-RELEASE #0 r243825: Tue Dec
4 09:23:10 UTC 2012
root@farrell.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC  amd64
$ id
uid=1001(hunger) gid=1002(hunger) groups=1002(hunger)
$ gcc fbsd9lul.c -o fbsd9lul
$ ./fbsd9lul
FreeBSD 9.{0,1} mmap/ptrace exploit
by Hunger <fbsd9lul@hunger.hu>
# id
uid=0(root) gid=0(wheel) egid=1002(hunger) groups=1002(hunger)
#

_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to
"freebsd-security-unsubscribe@freebsd.org"

Sergio Tam

2013-Jun-20 00:13 UTC

head link

Happy Birthday FreeBSD! Now you are 20 years old and your security is the same as 20 years ago... :)

2013/6/19 Oliver Pinter <oliver.pntr at
gmail.com>:> Hi Sergio!
>
> This exploit is not against NMAP, it is against MMAP FreeBSD system call.
>
> See this:
http://www.freebsd.org/security/advisories/FreeBSD-SA-13:06.mmap.asc
Hello Oliver

Oh. I need to buy lenses

Thans for the observation.

Regards.

freebsd security - Jun 2013 - Happy Birthday FreeBSD! Now you are 20 years old and your security is the same as 20 years ago... :)

Happy Birthday FreeBSD! Now you are 20 years old and your security is the same as 20 years ago... :)

Happy Birthday FreeBSD! Now you are 20 years old and your security is the same as 20 years ago... :)