CVE-2002-1826

grsecurity 1.9.4 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-1826. PoCs published by Guillaume PELAT.

AI-analyzed exploit summary This is a writeup describing a bypass for a grsecurity patch intended to prevent writing to kernel memory via the write() system call. It highlights the use of mmap() as an alternative method to achieve the same goal.

Description

grsecurity 1.9.4 for Linux kernel 2.4.18 allows local users to bypass read-only permissions by using mmap to directly map /dev/mem or /dev/kmem to kernel memory.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Guillaume PELAT · textlocallinux
https://www.exploit-db.com/exploits/21458

This is a writeup describing a bypass for a grsecurity patch intended to prevent writing to kernel memory via the write() system call. It highlights the use of mmap() as an alternative method to achieve the same goal.

Classification
Writeup 90%
Attack Type
Other
Complexity
Moderate
Reliability
Theoretical
Target: grsecurity patch (kernel memory protection)
Auth required
Prerequisites: root access · knowledge of kernel memory mapping techniques
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://online.securityfocus.com/archive/1/273002
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/4762
Third Party Advisory vdb-entry x_refsource_xf
http://www.iss.net/security_center/static/9109.php

Scores

EPSS 0.0100
EPSS Percentile 58.7%

Details

Status published
Products (1)
grsecurity/grsecurity_kernel_patch 1.9.4
Published Dec 31, 2002
Tracked Since Feb 18, 2026