Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com

CVE-2005-0124

Description

The coda_pioctl function in the coda functionality (pioctl.c) for Linux kernel 2.6.9 and 2.4.x before 2.4.29 may allow local users to cause a denial of service (crash) or execute arbitrary code via negative vi.in_size or vi.out_size values, which may trigger a buffer overflow.

POC

Reference

- http://seclists.org/lists/linux-kernel/2004/Dec/3914.html

- http://seclists.org/lists/linux-kernel/2005/Jan/1089.html

- http://seclists.org/lists/linux-kernel/2005/Jan/2018.html

- http://seclists.org/lists/linux-kernel/2005/Jan/2020.html

- http://www.securityfocus.com/archive/1/428028/100/0/threaded

Github

No PoCs found on GitHub currently.