회원가입메일  
   
 
> 취약성 정보
이름 Level 6, 3465 Point innovation 2006-05-31 01:54:46
제목 Linux Kernel MREMAP 로컬 권한 상승 취약점
click="window.open(this.href);return false;">http://www.securityfocus.com/bid/18177Bugtraq ID:  18177  
Class:  Unknown  
CVE:  CVE-2005-0528

Remote:  No  
Local:  Yes  
Published:  May 30 2006 12:00AM  
Updated:  May 30 2006 12:00AM  
Credit:  Discovery is credited to Andrea Arcangeli.  

세부설명
==========

Linux Kernel은 로컬 권한-상승 취약점을 가지고 있다. 해당 취약점은 'mremap'에 존재하는 명확히 알려지지 문제로 인해 발생한다.

이 문제는 로컬 공격자들이 슈퍼유저 권한을 얻어서, 취약한 컴퓨터를 완전 장악할 수 있게 해준다.

2.4.25 버전 이전의 Linux kernel들은 해당 문제에 취약하다.

해결책
==========

해당 문제를 해결하기 위해 Linux kernel 2.4.25 버전을 사용해라.

적절한 업데이트를 얻어서 적용하는 것에 대한 정보는 첨부된 권고들을 보기 바란다.

Linux kernel 2.4 .0-test3

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4 .0-test6

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4 .0-test8

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4 .0-test7

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4 .0-test2

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4 .0-test11

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4 .0-test10

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4 .0-test4

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4 .0-test5

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4 .0-test1

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4 .0-test12

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4 .0-test9

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.1

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.10

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.11

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2
Linux kernel 2.4.12

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.13

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.14

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.15

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.16

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.17

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.18 pre-8

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.18 pre-7

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.18

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.18 pre-6

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.18 pre-3

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.18 pre-2

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.18 pre-4

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.18 pre-5

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.18 x86

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.18 pre-1

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.19 -pre4

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.19 -pre1

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.19 -pre6

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.19 -pre2

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.19

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.19 -pre5

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.19 -pre3

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.2

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.20

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.21

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.21 pre1

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.21 pre4

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.21 pre7

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.22

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.23

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.23 -ow2

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.23 -pre9

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.24

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.24 -ow1

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.3

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.4

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.5

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.6

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2


Linux kernel 2.4.7

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.8

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

Linux kernel 2.4.9

Linux linux-2.4.25.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.25.tar.bz2

레퍼런스
==========

kernel.org Homepage. (Linux Kernel)
Linux 2.4.25 ChangeLog (Linux Kernel)

취약버전
==========

Linux Kernel 2.4.25 이전 버전
목록
957 Sun Grid Engine CSP 모드 인증.. [3]  Level 6, 3465 Point innovation 2006.06.09 3733
956 Microsoft NetMeeting 서비스 .. [3]  Level 6, 3465 Point innovation 2006.06.08 3915
955 Netscape File Upload Form.. [4]  Level 6, 3465 Point innovation 2006.06.07 3599
954 다양한 벤더 웹 브라우저 자바스크립트 필터링 ..   Level 4, 1440 Point avy 2006.06.07 570
953 ActiveState ActivePerl 로컬.. [5]  Level 4, 1440 Point avy 2006.06.06 3907
952 PHP Labware LabWiki Recen.. [3]  Level 4, 1440 Point avy 2006.06.06 3545
951 마이크로소프트 인터넷 익스프로러 Framese.. [5]  Level 4, 1440 Point avy 2006.06.06 3803
950 ESTsoft InternetDisk의 임의 .. [5]  Level 6, 3465 Point innovation 2006.06.06 4329
949 VMware Server 사용자 인증서 노출 .. [3]  Level 6, 3465 Point innovation 2006.06.03 3808
948 MySQL Mysql_real_escape F.. [4]  Level 4, 1440 Point avy 2006.06.02 4834
947 Snort URIContent Rules 탐지..   Level 6, 3465 Point innovation 2006.06.02 648
946 Microsoft Internet Explor..   Level 6, 3465 Point innovation 2006.06.02 606
945 F-Secure Products Web Con.. [2]  Level 6, 3465 Point innovation 2006.06.01 3472
944 FreeBSD ypserv Inoperativ.. [3]  Level 6, 3465 Point innovation 2006.06.01 3418
943 FreeBSD SMBFS chroot 디렉토리.. [3]  Level 6, 3465 Point innovation 2006.06.01 3792
942 Linux Kernel Proc dentry_..   Level 6, 3465 Point innovation 2006.06.01 653
941 Linux Kernel MREMAP 로컬 권한.. [1]  Level 6, 3465 Point innovation 2006.05.31 3454
940 Linux Kernel ELF Loader M.. [1]  Level 6, 3465 Point innovation 2006.05.31 3360
939 Linux Kernel Invalid Proc.. [1]  Level 6, 3465 Point innovation 2006.05.31 3296
938 PHP "curl_init()" Safe Mo.. [3]  Level 6, 3465 Point innovation 2006.05.31 5405
  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10