[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Remote Vulnerability in AIX RPC.cmsd released by iDefense

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Remote Vulnerability in AIX RPC.cmsd released by iDefense
From: "Rodrigo Rubira Branco (BSDaemon)" <rodrigo@xxxxxxxxxxxxxxxxx>
Date: Tue, 02 Feb 2010 07:09:52 -0200

Hey guys,

Just now I saw that iDefense did not include in their advisory the
triggering code for this
(http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=825). 
I believe it's very important to test your
systems and verify the released patch.

So here we go:
http://www.kernelhacking.com/rodrigo/exploits/cmsd_exploit.c



Regards,


Rodrigo (BSDaemon).


--
Rodrigo Rubira Branco (BSDaemon)
"Kernel Hacking:  If you really know, you can hack!"

Prev by Date: [SECURITY] [DSA 1985-1] New sendmail packages fix SSL certificate verification weakness
Next by Date: 360 Security Guard breg device drivers Privilege Escalation Vulnerabilitie
Previous by thread: [SECURITY] [DSA 1985-1] New sendmail packages fix SSL certificate verification weakness
Next by thread: 360 Security Guard breg device drivers Privilege Escalation Vulnerabilitie
Index(es):
- Date
- Thread