Xen exploitation part 1: XSA-105, from nobody to root

Xen exploitation part 1: XSA-105, from nobody to root

On 3 czerwca, 2016, Posted by , In News, By ,, , With Możliwość komentowania Xen exploitation part 1: XSA-105, from nobody to root została wyłączona

This blog post describes the exploitation of Xen Security Advisory 105 (XSA-105) [1] (CVE-2014-7155). This post explains the environment setup and shows the development of a fully working exploit on Linux 4.4.5.

We are not aware of any public exploit for this vulnerability, although Andrei Lutas wrote excellent articles [2] [3] [4] describing the root cause of the vulnerability and how to trigger it. This post explains the environment setup and shows the development of a fully working exploit on Linux 4.4.5 (it probably works with many others versions).

http://blog.quarkslab.com/xen-exploitation-part-1-xsa-105-from-nobody-to-root.html