CVE-2004-0228

Linux kernel <2.6 - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2004-0228. PoCs published by Brad Spengler.

AI-analyzed exploit summary This exploit leverages an integer handling vulnerability in the Linux kernel's proc handler for cpufreq to read arbitrary kernel memory. It uses a race condition between a parent and child process to manipulate file positions and trigger the vulnerability.

Description

Integer signedness error in the cpufreq proc handler (cpufreq_procctl) in Linux kernel 2.6 allows local users to gain privileges.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Brad Spengler · clocallinux

https://www.exploit-db.com/exploits/24043

View Code ZIP pw:eip

This exploit leverages an integer handling vulnerability in the Linux kernel's proc handler for cpufreq to read arbitrary kernel memory. It uses a race condition between a parent and child process to manipulate file positions and trigger the vulnerability.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Complex

Reliability

Racy

Target: Linux kernel (versions affected by CVE-2004-0228)

No auth needed

Prerequisites: Local access to the system · A file not in cache

MITRE ATT&CK