Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
The ec_dev_ioctl function in net/econet/af_econet.c in the Linux kernel before 2.6.36.2 does not require the CAP_NET_ADMIN capability, which allows local users to bypass intended access restrictions and configure econet addresses via an SIOCSIFADDR ioctl call.
No PoCs from references.
- https://github.com/InteliSecureLabs/Linux_Exploit_Suggester
- https://github.com/PleXone2019/Linux_Exploit_Suggester
- https://github.com/karottc/linux-virus
- https://github.com/qashqao/linux-xsuggest
- https://github.com/ram4u/Linux_Exploit_Suggester