Linux 2.6.30+ Local Kernel Exploit 0day, disabling SELinux/AppArmor/LSM ;)

May 26th, 2010 Admin


Hello to my new vendor-sec visitors! Haven’t we learned yet that the kernel can do whatever it wants? Guess not ;) Once I own the kernel (which SELinux does nothing to prevent), I just destroy everything (SELinux, AppArmor, LSM, auditing, and more!), in honor of the curse of Cheddar Bay! 100% reliable too BTW, you can exploit the same machine as many times as you like. No alerts, no warnings, and this weekend it will work on x64 too.

Posted in Linux News Tags: , , , , , , ,
«
»
You can leave a response, or trackback from your own site.

24 Responses to “Linux 2.6.30+ Local Kernel Exploit 0day, disabling SELinux/AppArmor/LSM ;)”

  1. adarqui says:
    May 26, 2010 at 12:52 am

    theo de raadt is better than you in every facet of life.

  2. hcinoubnf says:
    May 26, 2010 at 1:11 am

    2.6.27.10-grsec #1 SMP Wed Aug 19 00:37:38 CDT 2009 x86_64 it possible to get root on this kernel ?

  3. Arkblu says:
    May 26, 2010 at 1:43 am

    You don’t.

  4. neurom4nc3r says:
    May 26, 2010 at 1:52 am

    have some vulns for this kernel version

  5. SkitMAS says:
    May 26, 2010 at 1:53 am

    This is what I think your saying..

    ” HURR DURR I LIEK WEB APP VULNERS ME NO NO WTF A BUFFER OVERFLOW IZ DURRR HURR “

  6. Hayate1993 says:
    May 26, 2010 at 2:27 am

    How can i get a exploit of a site??
    plz tell me!!

    THankYOu for helping! =]

  7. helgesdk says:
    May 26, 2010 at 3:00 am

    I think you will only be able to take complete control of your VM.

  8. solarbunny says:
    May 26, 2010 at 3:15 am

    Is it possible to use this for breaking out of openvz container?

  9. willianm420 says:
    May 26, 2010 at 4:11 am

    Linux localhost 2.6.18-92.1.22.el5 #1 SMP Tue Dec 16 11:57:43 EST 2008 x86_64 x86_64 x86_64 GNU/Linux

    … is possible hack whit is exploit?

  10. OBOGAN says:
    May 26, 2010 at 4:41 am

    lol ,pwnage maked possible because of this SELinux…..nonsens XDDD

  11. spendergrsec says:
    May 26, 2010 at 5:26 am

    No, only 2.6.30 and 2.6.30.1 (due to the exploit being released, the issue was fixed in 2.6.30.2)

  12. xalupeao says:
    May 26, 2010 at 5:56 am

    uname -a: Linux localhost 2.6.29.1-server-4mnb #1 SMP Mon Apr 20 17:17:54 EDT 2009 x86_64
    … is possible hack whit is exploit?

  13. osmano807 says:
    May 26, 2010 at 6:00 am

    Who is the IDIOT that release a UNTESTED kernel? Fockoff

  14. haveadot says:
    May 26, 2010 at 6:34 am

    what’s going on here? am i online? is this the matrix? I LOVE THE MATRIX SOUNDTRACK IT’S SO BADASS

  15. bonchbonch says:
    May 26, 2010 at 6:41 am

    Linux, lol.

  16. spendergrsec says:
    May 26, 2010 at 7:27 am

    Actually that’s Windows 7 ;)

  17. int3rl0per says:
    May 26, 2010 at 8:12 am

    Jesus. The ultimate cockslap is the fact that you’re connected from a Windows Vista box…

  18. viniciuskmax says:
    May 26, 2010 at 8:40 am

    love it!

  19. facorread says:
    May 26, 2010 at 9:27 am

    Awesome!

  20. spendergrsec says:
    May 26, 2010 at 9:56 am

    hehe thanks :) I’ve been watching your video too much lately ;)

  21. funtimeinternet says:
    May 26, 2010 at 10:47 am

    AWESOME.

  22. hungerz says:
    May 26, 2010 at 10:48 am

    kewl ;D

  23. malt1618 says:
    May 26, 2010 at 10:56 am

    rawrz! hax!!!!!!!! >:]

  24. BlueOrchids2009 says:
    May 26, 2010 at 11:08 am

    haha

Leave a Reply

Comments links could be nofollow free.



  • Featured Video