CVE-2009-2767

Linux Kernel < 2.6.31-rc6 - Denial of Service or Privilege Escalation via CLOCK_MONOTONIC_RAW clock_nanosleep

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-2767. PoCs published by Hiroshi Shimamoto.

AI-analyzed exploit summary This exploit triggers a local denial-of-service vulnerability in the Linux kernel by calling clock_nanosleep with an invalid clock ID (4), causing a kernel crash. The issue was introduced in Linux kernel 2.6.28-rc1 and fixed in 2.6.31-rc5-git3.

Description

The init_posix_timers function in kernel/posix-timers.c in the Linux kernel before 2.6.31-rc6 allows local users to cause a denial of service (OOPS) or possibly gain privileges via a CLOCK_MONOTONIC_RAW clock_nanosleep call that triggers a NULL pointer dereference.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Hiroshi Shimamoto · cdoslinux

https://www.exploit-db.com/exploits/33148

View Code ZIP pw:eip

This exploit triggers a local denial-of-service vulnerability in the Linux kernel by calling clock_nanosleep with an invalid clock ID (4), causing a kernel crash. The issue was introduced in Linux kernel 2.6.28-rc1 and fixed in 2.6.31-rc5-git3.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Linux kernel versions 2.6.28-rc1 to 2.6.31-rc5-git3

No auth needed

Prerequisites: Local access to the target system

MITRE ATT&CK