On Thu, 13 Jul 2006, David Taylor wrote:
Curious why Secunia is rating this as 'less critical'. The way I see it,
this exploit could be integrated into the other exploits for mambo, joomla,
phpbb, etc. Also, all of us that have websites hosted on linux machines
that have a vulnerable kernel co
David Taylor wrote:
Curious why Secunia is rating this as 'less critical'. The way I see it,
this exploit could be integrated into the other exploits for mambo,
joomla,
phpbb, etc. Also, all of us that have websites hosted on linux machines
that have a vulnerable kernel could get root?
I'm
no ... the hacker used a previously hacked developer's account and he
used the fresh kernel bug to escalate to root privilege probably
because he had no access from the developer's account..
Read the story on debian.org
David Taylor wrote:
Curious why Secunia is rating this as 'less critic
Curious why Secunia is rating this as 'less critical'. The way I see it,
this exploit could be integrated into the other exploits for mambo, joomla,
phpbb, etc. Also, all of us that have websites hosted on linux machines
that have a vulnerable kernel could get root?
I'm thinking 'highly critical
Debian Development Machine Hacked
http://lists.debian.org/debian-devel-announce/2006/07/msg3.html
or
http://www.zone-h.org/content/view/13853/31/
Confirmed hacked by:
Linux Kernel PRCTL Core Dump Handling Privilege Escalation Vulnerability
http://www.debian.org/News/2006/20060713
or
htt