CVE-2008-3832

Fedora Linux Kernel - Denial of Service via utrace_control Function

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-3832. PoCs published by Michael Simms.

AI-analyzed exploit summary The provided text describes a local denial-of-service vulnerability in Fedora 8 and 9 Linux kernels. It mentions that attackers can exploit this issue to crash the kernel, potentially execute arbitrary code, and provides a simple 'gdb' command to trigger the crash.

Description

A certain Fedora patch for the utrace subsystem in the Linux kernel before 2.6.26.5-28 on Fedora 8, and before 2.6.26.5-45 on Fedora 9, allows local users to cause a denial of service (NULL pointer dereference and system crash or hang) via a call to the utrace_control function.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Michael Simms · textdoslinux

https://www.exploit-db.com/exploits/32451

View Code ZIP pw:eip

The provided text describes a local denial-of-service vulnerability in Fedora 8 and 9 Linux kernels. It mentions that attackers can exploit this issue to crash the kernel, potentially execute arbitrary code, and provides a simple 'gdb' command to trigger the crash.

Classification

Writeup 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Fedora 8 prior to kernel-2.6.26.5-28, Fedora 9 prior to kernel-2.6.26.5-45

No auth needed

Prerequisites: Local access to the affected system

MITRE ATT&CK