CVE-2009-3043

Linux Kernel < 2.6.31 - Denial of Service via Pseudo-Terminal I/O Activity

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-3043. PoCs published by Eric W. Biederman.

AI-analyzed exploit summary This exploit targets a local denial-of-service vulnerability in the Linux kernel (CVE-2009-3043) by rapidly sending SIGINT signals to a pseudo-terminal process. It demonstrates the crash by leveraging a race condition in the kernel's terminal handling.

Description

The tty_ldisc_hangup function in drivers/char/tty_ldisc.c in the Linux kernel 2.6.31-rc before 2.6.31-rc8 allows local users to cause a denial of service (system crash, sometimes preceded by a NULL pointer dereference) or possibly gain privileges via certain pseudo-terminal I/O activity, as demonstrated by KernelTtyTest.c.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Eric W. Biederman · cdoslinux

https://www.exploit-db.com/exploits/33193

View Code ZIP pw:eip

This exploit targets a local denial-of-service vulnerability in the Linux kernel (CVE-2009-3043) by rapidly sending SIGINT signals to a pseudo-terminal process. It demonstrates the crash by leveraging a race condition in the kernel's terminal handling.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Linux kernel versions 2.6.26 to 2.6.31-rc7

No auth needed

Prerequisites: Local access to the target system · Ability to execute code on the target

MITRE ATT&CK