Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com

CVE-2004-0554

Description

Linux kernel 2.4.x and 2.6.x for x86 allows local users to cause a denial of service (system crash), possibly via an infinite loop that triggers a signal handler with a certain sequence of fsave and frstor instructions, as originally demonstrated using a "crash.c" program.

POC

Reference

- http://linuxreviews.org/news/2004-06-11_kernel_crash/index.html

- http://www.redhat.com/support/errata/RHSA-2004-260.html

- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9426

Github

No PoCs found on GitHub currently.