Not logged in
Log in now
Create an account
Subscribe to LWN
LWN.net Weekly Edition for May 16, 2013
A look at the PyPy 2.0 release
PostgreSQL 9.3 beta: Federated databases and more
LWN.net Weekly Edition for May 9, 2013
(Nearly) full tickless operation in 3.10
The race is hard to win in this case. And as you can see, the PoC requires a kernel patch to work reliably.
A story of three kernel vulnerabilities
Posted Feb 19, 2013 21:00 UTC (Tue) by drag (subscriber, #31333)
How many times can a script kiddie try the exploit in a minute? In a hour? In a day? I don't know the details on this exploit, but I expect the answers to any of those questions should range from the thousands to the tens of thousand attempts.
How many times does it have to work? The answer, of course, is 'once'. So if the exploit is as little as 0.0001% reliable I bet it can can lead to a rooted computer 100% of the time given the right circumstances.
Posted Feb 19, 2013 21:30 UTC (Tue) by hibiscus (subscriber, #86633)
Posted Feb 20, 2013 4:09 UTC (Wed) by rahvin (subscriber, #16953)
Posted Feb 21, 2013 15:03 UTC (Thu) by alankila (subscriber, #47141)
In any case this sort of probabilities require means to fire the attack several times per second or it will probably take years of continuous attempting before succeeding. Unfortunately ptrace sounds like the sort of thing you can try thousands of times per second.
Posted Feb 21, 2013 16:20 UTC (Thu) by drag (subscriber, #31333)
Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds