Re: Linux kernel do_brk() proof-of-concept exploit code

[Calum <bugtraq () umtstrial co uk>]

On Tuesday 02 December 2003 3:16 am, Christophe Devine wrote:

> The following program can be used to test if a x86 Linux system
> is vulnerable to the do_brk() exploit; use at your own risk.

This POC code needs nasm greater than 0.98.36, otherwise you get the following 
error when trying to compile it.

exploit@womble exploit $ nasm -v
NASM version 0.98.36 compiled on Jul 17 2003
exploit@womble exploit $ nasm brk_poc.asm -o a.out
brk_poc.asm:5: error: attempt to set a negative program origin

It works with 0.98.38.

-- 

The early bird may get the worm, but the second mouse gets the cheese.
http://gk.umtstrial.co.uk/~calum/