Actually, Esa Etelavuori wrote a paper on exploiting kernel buffer overflows in FreeBSD... which is similar, I assume, to what they did. In this paper he discusses using kernel bugs for exploitation for breaking out of jail(2). Pretty neat stuff :-) Im not sure if the paper is being held somewhere offically, but a copy of it was sent to bugtraq the end of december. You can find it at: http://security-archive.merton.ox.ac.uk/bugtraq-200012/0501.html Enjoy. Andrew On Sun, 7 May 2000, Cyber Hunter wrote: > Does anyone know anything about the vulnerability found by the group LSD in > the x86 systems ? That has helped them to win the Argus Event ? > http://www.argus-systems.com/events/infosec/#Rules > > I would like to study this. > *-------------................................................. | Andrew R. Reiter | arrat_private | "It requires a very unusual mind | to undertake the analysis of the obvious" -- A.N. Whitehead
This archive was generated by hypermail 2b30 : Wed Apr 25 2001 - 17:37:40 PDT