CVE-2006-2451
CVE-2006-2451
The suid_dumpable support in Linux kernel 2.6.13 up to versions before 2.6.17.4, and 2.6.16 before 2.6.16.24, allows a local user to cause a denial of service (disk consumption) and possibly gain privileges via the PR_SET_DUMPABLE argument of the prctl function and a program that causes a core dump file to be created in a directory for which the user does not have permissions.
Affected products
n/a · n/apublic PoCs found — 5
exploitdbwww.exploit-db.com/exploits/2031unverifiedexploitdbwww.exploit-db.com/exploits/2004unverifiedexploitdbwww.exploit-db.com/exploits/2005unverifiedexploitdbwww.exploit-db.com/exploits/2006unverifiedexploitdbwww.exploit-db.com/exploits/2011unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=195902http://secunia.com/advisories/20953http://secunia.com/advisories/20960http://secunia.com/advisories/20965http://secunia.com/advisories/20986http://secunia.com/advisories/20991http://secunia.com/advisories/21179http://secunia.com/advisories/21498http://secunia.com/advisories/21966http://securitytracker.com/id?1016451https://issues.rpath.com/browse/RPL-488https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11336