Exploitation Summary
EIP tracks 1 public exploit for CVE-2002-1826. PoCs published by Guillaume PELAT.
AI-analyzed exploit summary This is a writeup describing a bypass for a grsecurity patch intended to prevent writing to kernel memory via the write() system call. It highlights the use of mmap() as an alternative method to achieve the same goal.
Description
grsecurity 1.9.4 for Linux kernel 2.4.18 allows local users to bypass read-only permissions by using mmap to directly map /dev/mem or /dev/kmem to kernel memory.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Guillaume PELAT · textlocallinux
https://www.exploit-db.com/exploits/21458
This is a writeup describing a bypass for a grsecurity patch intended to prevent writing to kernel memory via the write() system call. It highlights the use of mmap() as an alternative method to achieve the same goal.
Classification
Writeup 90%
Attack Type
Other
Complexity
Moderate
Reliability
Theoretical
Target:
grsecurity patch (kernel memory protection)
Auth required
Prerequisites:
root access · knowledge of kernel memory mapping techniques
MITRE ATT&CK
mistral-large-3 · analyzed Feb 16, 2026
Full analysis →
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://online.securityfocus.com/archive/1/273002
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/4762
Third Party Advisory vdb-entry
x_refsource_xf
http://www.iss.net/security_center/static/9109.php
Scores
EPSS
0.0100
EPSS Percentile
58.7%
Details
Status
published
Products (1)
grsecurity/grsecurity_kernel_patch
1.9.4
Published
Dec 31, 2002
Tracked Since
Feb 18, 2026