Thursday, October 8, 2009

FreeBSD 7.2 VFS/devfs race condition exploit 0day

FreeBSD 7.2 and below (including 6.4) are vulnerable to race condition in VFS
and devfs code, resulting in NULL pointer dereference. In contrast to pipe race
condition, this vulnerability is actually much harder to exploit.

Exploit: http://www.frasunek.com/devfs.txt

See also: FreeBSD 7.2 local root vulnerability (0day) demo

No comments: