linux各版本代码量,linux各版本对应溢出漏洞总结(溢出代码)

最新推荐文章于 2023-03-07 10:43:12 发布
最新推荐文章于 2023-03-07 10:43:12 发布
阅读量139 收藏
点赞数
文章标签: linux各版本代码量

记录一下。

2.4.17

newlocal

kmod

2.4.18

brk

brk2

newlocal

kmod

km.2

2.4.19

brk

brk2

newlocal

kmod

km.2

2.4.20

ptrace

kmod

ptrace-kmod

km.2

brk

brk2

2.4.21

km.2

brk

brk2

ptrace

ptrace-kmod

2.4.22

km.2

brk2

brk

ptrace

ptrace-kmod

2.4.22-10

loginx

./loginx

2.4.23

mremap_pte

2.4.24

mremap_pte

Uselib24

2.4.25-1

uselib24

2.4.27

Uselib24

2.6.0

REDHAT 6.2

REDHAT 6.2 (zoot)

SUSE 6.3

SUSE 6.4

REDHAT 6.2 (zoot)

all top from rpm

-------------------------

FreeBSD 3.4-STABLE from port

FreeBSD 3.4-STABLE from packages

freeBSD 3.4-RELEASE from port

freeBSD 4.0-RELEASE from packages

----------------------------

all with wuftpd 2.6.0;

=

wuftpd

h00lyshit

2.6.2

mremap_pte

krad

h00lyshit

2.6.5 to 2.6.10

krad

krad2

h00lyshit

2.6.8-5

krad2

./krad x

x = 1..9

h00lyshit

2.6.9-34

r00t

h00lyshit

2.6.13-17

prctl

h00lyshit

-------------------

2.4.17 -> newlocal, kmod, uselib24

2.4.18 -> brk, brk2, newlocal, kmod

2.4.19 -> brk, brk2, newlocal, kmod

2.4.20 -> ptrace, kmod, ptrace-kmod, brk, brk2

2.4.21 -> brk, brk2, ptrace, ptrace-kmod

2.4.22 -> brk, brk2, ptrace, ptrace-kmod

2.4.22-10 -> loginx

2.4.23 -> mremap_pte

2.4.24 -> mremap_pte, uselib24

2.4.25-1 -> uselib24

2.4.27 -> uselib24

2.6.2 -> mremap_pte, krad, h00lyshit

2.6.5 -> krad, krad2, h00lyshit

2.6.6 -> krad, krad2, h00lyshit

2.6.7 -> krad, krad2, h00lyshit

2.6.8 -> krad, krad2, h00lyshit

2.6.8-5 -> krad2, h00lyshit

2.6.9 -> krad, krad2, h00lyshit

2.6.9-34 -> r00t, h00lyshit

2.6.10 -> krad, krad2, h00lyshit

2.6.13 -> raptor, raptor2, h0llyshit, prctl

2.6.14 -> raptor, raptor2, h0llyshit, prctl

2.6.15 -> raptor, raptor2, h0llyshit, prctl

2.6.16 -> raptor, raptor2, h0llyshit, prctl

-----------------------------------------------------

Linux

Common

Linux 2.2.x ->Linux kernel ptrace/kmod local root exploit (http://milw0rm.com/exploits/3)

Linux 2.2.x (on exported files, should be vuln) (http://milw0rm.com/exploits/718)

Linux <= 2.2.25 ->Linux Kernel 2.x mremap missing do_munmap Exploit (http://milw0rm.com/exploits/160)

Linux 2.4.x ->Linux kernel ptrace/kmod local root exploit (http://milw0rm.com/exploits/3)

Linux 2.4.x -> pwned.c - Linux 2.4 and 2.6 sys_uselib local root exploit (http://milw0rm.com/exploits/895)

Linux 2.4.x ->Linux kernel 2.4 uselib() privilege elevation exploit (http://milw0rm.com/exploits/778)

Linux 2.4.20 ->Linux Kernel Module Loader Local R00t Exploit (http://milw0rm.com/exploits/12)

Linux <= 2.4.22 ->Linux Kernel <= 2.4.22 (do_brk) Local Root Exploit (http://milw0rm.com/exploits/131)

Linux 2.4.22 ->Linux Kernel 2.4.22 "do_brk()" local Root Exploit (PoC) (http://milw0rm.com/exploits/129)

Linux <= 2.4.24 ->Linux Kernel 2.x mremap missing do_munmap Exploit (http://milw0rm.com/exploits/160)

Linux 2.4.x < 2.4.27-rc3 (on nfs exported files) (http://milw0rm.com/exploits/718)

Linux <= 2.6.2 ->Linux Kernel 2.x mremap missing do_munmap Exploit (http://milw0rm.com/exploits/160)

Linux 2.6.11 -> Linux Kernel <= 2.6.11 (CPL 0) Local Root Exploit (k-rad3.c) (http://milw0rm.com/exploits/1397)

Linux 2.6.13 <= 2.6.17.4 -> Linux Kernel 2.6.13 <= 2.6.17.4 prctl() Local Root Exploit (logrotate) (http://milw0rm.com/exploits/2031)

Linux 2.6.13 <= 2.6.17.4 -> Linux Kernel 2.6.13 <= 2.6.17.4 sys_prctl() Local Root Exploit (http://milw0rm.com/exploits/2011)

Linux 2.6.11 <= 2.6.17.4 -> h00lyshit.c -Linux Kernel <= 2.6.17.4 (proc) Local Root Exploit (http://milw0rm.com/exploits/2013)

Linux 2.6.x < 2.6.7-rc3 (default configuration) (http://milw0rm.com/exploits/718)

Linux 2.6.x -> pwned.c - Linux 2.4 and 2.6 sys_uselib local root exploit (http://milw0rm.com/exploits/895)

Debian

Debian 2.2 ->/usr/bin/pileup Local Root Exploit (http://milw0rm.com/exploits/1170)

Ubuntu

Ubuntu Breezy 5.10 Installer Password Disclosure Vulnerability (http://milw0rm.com/exploits/1579)

Slackware

Slackware 7.1 ->/usr/bin/Mail Exploit (http://milw0rm.com/exploits/285)

Mandrake

Mandrake 8.2 -> /usr/mail local exploit (http://milw0rm.com/exploits/40)

Mandrake <= 10.2 -> cdrdao Local Root Exploit (http://milw0rm.com/exploits/997)

Suse

SuSE Linux 9.1 -> 'chfn' local root bug (http://milw0rm.com/exploits/1299)

SuSE Linux 9.2 -> 'chfn' local root bug (http://milw0rm.com/exploits/1299)

SuSE Linux 9.3 -> 'chfn' local root bug (http://milw0rm.com/exploits/1299)

SuSE Linux 10.0 -> 'chfn' local root bug (http://milw0rm.com/exploits/1299)

SuSE Linux Enterprise Server 8 -> 'chfn' local root bug (http://milw0rm.com/exploits/1299)

SuSE Linux Enterprise Server 9 -> 'chfn' local root bug (http://milw0rm.com/exploits/1299)

BSD

Freebsd

Freebsd 3.5.1 ->Ports package local root (http://milw0rm.com/exploits/286)

Freebsd 4.2 ->Ports package local root (http://milw0rm.com/exploits/286)

FreeBSD 4.x <= 5.4) master.passwd Disclosure Exploit (http://milw0rm.com/exploits/1311)

Openbsd

Openbsd 2.x - 3.3 ->exec_ibcs2_coff_prep_zmagic() Kernel Exploit (http://milw0rm.com/exploits/125)

OpenBSD 3.x-4.0 ->vga_ioctl() root exploit (http://milw0rm.com/exploits/3094)

Sun-Microsystems

Solaris

Solaris 2.4 ->lion24.c (http://milw0rm.com/exploits/328)

Solaris 2.6 with 107733-10 and without 107733-11 (http://milw0rm.com/exploits/1182)

Solaris 2.6 with 107733-10 and without 107733-11 (http://milw0rm.com/exploits/1182)

Solaris 5.5.1 ->X11R6.3 xterm (http://milw0rm.com/exploits/338)

Solaris 7 with 106950-14 through 106950-22 and without 106950-23 (http://milw0rm.com/exploits/1182)

Solaris 7 with 106950-14 through 106950-22 and without 106950-23 (http://milw0rm.com/exploits/1182)

Solaris 7 without patch 107178-03 (http://milw0rm.com/exploits/714)

Solaris 7 without patch 107178-03 (http://milw0rm.com/exploits/713)

Solaris 8 without patch 108949-08 (http://milw0rm.com/exploits/713)

Solaris 8 without patch 108949-08 (http://milw0rm.com/exploits/714)

Solaris 8 with 109147-07 through 109147-24 and without 109147-25 (http://milw0rm.com/exploits/1182)

Solaris 8 with 108993-14 through 108993-31 and without 108993-32 (http://milw0rm.com/exploits/715)

Solaris 8 with 109147-07 through 109147-24 and without 109147-25 (http://milw0rm.com/exploits/1182)

Solaris 8 with 108993-14 through 108993-31 and without 108993-32 (http://milw0rm.com/exploits/715)

Solaris 9 without patch 116308-01 (http://milw0rm.com/exploits/714)

Solaris 9 without patch 116308-01 (http://milw0rm.com/exploits/713)

Solaris 9 without 113476-11 (http://milw0rm.com/exploits/715)

Solaris 9 without 112963-09 (http://milw0rm.com/exploits/1182)

Solaris 9 without 113476-11 (http://milw0rm.com/exploits/715)

Solaris 9 without 112963-09 (http://milw0rm.com/exploits/1182)

Solaris 10 (libnspr) Arbitrary File Creation Local Root Exploit (http://milw0rm.com/exploits/2543)

Solaris 10 (libnspr) constructor Local Root Exploit (http://milw0rm.com/exploits/2641)

SunOS

SunOS 5.10 Generic i86pc i386 i86pc (http://milw0rm.com/exploits/1073)

SunOS 5.9 Generic_112233-12 sun4u (http://milw0rm.com/exploits/1073)

weixin_39980184
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
linux5.4获取root权限,gcc++漏洞 普通用户获取root权限
weixin_42492215的博客
05-01 279
测试环境centos 5.4参考文章;http://salogs.com/2010/12/linux-gcc-root/[test2@wdj002 ~]$ mkdir /tmp/a[test2@wdj002 ~]$ ln -s /bin/ls /tmp/a/b[test2@wdj002 ~]$ exec 3< /tmp/a/b[test2@wdj002 ~]$ ls -l /proc/516...
linux内核 漏洞扫描,关于Linux 2.6 kernel udev 漏洞的检测及修补
weixin_39629876的博客
04-30 231
最近闹的很凶的Linux udev漏洞2.6系列的CentOS/RHEL 5.x(除了5.3)都有效,而对2.4系列的则无效,对于CentOS/RHEL 4.x 经过测试,按本文攻击方法无效,但是否真的无效还有待真正高手验证!请大家必须打起12分精神。赶紧升级。ExtMail团队已经将所有我们掌控的Linux服务器(2.6 kernel,5.x 系列)全部升级完毕。以下是检测方法和升级方法,请路...
linux 2.4远程漏洞,FreeType 2.4.9之前版本多个远程漏洞
weixin_29585753的博客
05-13 203
发布日期:2012-03-06更新日期:2012-03-07受影响系统:FreeType FreeType 2.4.8FreeType FreeType 2.4.7FreeType FreeType 2.4.5FreeType FreeType 2.4.3FreeType FreeType 2.4.2FreeType FreeType 2.4FreeType FreeType 2.3.9FreeT...
linux版本对应溢出漏洞总结(溢出代码)
weixin_33895657的博客
08-09 426
记录一下。2.4.17 newlocal kmod 2.4.18 brk brk2 newlocal kmod km.2 2.4.19 brk brk2 newlocal kmod km.2 2.4.20 ptrace kmod ptrace-kmod km.2 brk brk2 2.4.21 km.2 brk ...
2019网络空间安全国赛8080缓冲区溢出漏洞
12-28
在网络安全领域,缓冲区溢出漏洞是一种常见的攻击手段,它主要发生在程序处理数据时,由于对输入数据长度的检查不足,导致数据写入了原本并未分配的空间,进而可能破坏程序的正常运行,甚至允许攻击者执行任意代码。...
Skills Assessment - Stack Buffer Overflows on Linux x86-Write Up
08-06
### 知识点详解 ...通过以上分析,我们可以深入理解 Linux x86 平台上的栈溢出漏洞以及如何利用这一漏洞。同时,也提醒开发者和系统管理员注意防范此类安全威胁,采取相应的安全措施来保护系统免受攻击。
Linux高级程序设计
01-07
9. **安全编程**:讲解权限模型、文件权限、setuid/setgid、capabilities,以及防止缓冲区溢出和其他安全漏洞的方法。 10. **性能分析与优化**:介绍性能监控工具,如gprof、strace、valgrind,以及如何对程序进行...
缓冲区溢出的原理和实践
09-10
在过去几个月里,安全研究人员发现了大的缓冲区溢出漏洞,这些漏洞出现在多种不同的软件和服务中,如syslog、splitvt、sendmail 8.7.5、Linux/FreeBSD的mount功能、Xt库、at命令等。这些发现表明,缓冲区溢出仍然...
Linux l 2.4.20-8 # 溢出
weixin_30457065的博客
07-16 142
/* by Nergal */ #include <stdio.h> #include <sys/ptrace.h> #include <fcntl.h> #include <sys/ioctl.h> void ex_passwd(int fd) { char z; if (read(fd, &z, 1) <= ...
local-root-exploits:本地根开发
04-27
本地根开发 :LINUX本地根开发
linux-image-4.12.9-041209-generic_4.12.9-041209.201708242344_amd64.deb
06-21
参考文档 http://www.matsuura.com.br/2017/08/como-instalar-o-kernel-4129.html $ wget -c kernel.ubuntu.com/~kernel-ppa/mainline/v4.12.9/linux-headers-4.12.9-041209_4.12.9-041209.201708242344_all.deb $ wget -c kernel.ubuntu.com/~kernel-ppa/mainline/v4.12.9/linux-headers-4.12.9-041209-generic_4.12.9-041209.201708242344_amd64.deb $ wget -c kernel.ubuntu.com/~kernel-ppa/mainline/v4.12.9/linux-image-4.12.9-041209-generic_4.12.9-041209.201708242344_amd64.deb
linux版本代码,【资料收藏】linux版本对应溢出漏洞总结(溢出代码)
weixin_36468140的博客
05-03 212
刚好最近在玩LINUX 收藏之...慢慢学习...2.4.17newlocalkmod2.4.18brkbrk2newlocalkmodkm.22.4.19brkbrk2newlocalkmodkm.22.4.20ptracekmodptrace-kmodkm.2brkbrk22.4.21km.2brkbrk2ptraceptrace-kmod2.4.22km.2brk2brkptraceptra...
linux3.x漏洞,CoDeSys身份验证绕过漏洞
weixin_42303522的博客
05-16 330
发布日期:2013-01-14更新日期:2013-01-16受影响系统:codesys codesys 2.x描述:--------------------------------------------------------------------------------CVE(CAN) ID: CVE-2012-6068CoDeSys是Windows平台下,独立于硬件的IEC 61131-3...
linux版本代码,Linux版本对应溢出漏洞溢出代码整理总结
weixin_36295010的博客
05-03 155
2.4.17localkmod2.4.18brkbrk2localkmodkm.22.4.19brkbrk2localkmodkm.22.4.20ptracekmodptrace-kmodkm.2brkbrk22.4.21km.2brkbrk2ptraceptrace-kmod2.4.22km.2brk2brkptraceptrace-kmod2.4.22-10loginx./loginx2.4....
Linux常见漏洞修复
最新发布
wd520521的博客
03-07 1895
5353端口是mDNS服务,通常是帮助程序在不需要进行手动网络配置的情况下,在一个本地网络中发布和获知各种服务和主机。例如,当某用户把他的计算机接入到某个局域网时,如果他的机器运行有Avahi服务,则Avahi程式自动广播,从而发现网络中可用的打印机、共享文件和可相互聊天的其他用户。
linux local root exploit,linux非交互环境下本地提权思路与反思 linux localroot exploit
weixin_42475535的博客
05-12 316
在iptables限制非常严格的时候,无法走icmp udp tcp的bind shell或connect back shell,又需要本地提权,root了之后关闭iptables,看看能否绕过访问控制手段(当然了,如果别人是硬件的防火墙,下文解决不了问题)。在这一场景下,可以考虑参考下文的非交互式本地提权的方法,或许还有其他linux localroot exploit也能实现,实战出真知。另外...
Local Root Exploits
cnbird's blog
07-19 1142
https://freeworld.ws/localroot/?kernel=2.6.18
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值