Last time we went over the two bugs in the futex kernel module and how these bugs allow us to potentially control a node in some kernel-residing linked list.
This time, we'll discuss how to leverage these bugs in order to achieve a limited form of kernel write, or to be more precise: "write an uncontrolled value to a controlled address".
more here............http://blog.nativeflow.com/escalating-futex
This time, we'll discuss how to leverage these bugs in order to achieve a limited form of kernel write, or to be more precise: "write an uncontrolled value to a controlled address".
more here............http://blog.nativeflow.com/escalating-futex