It's far from complete
It's far from complete
Posted Feb 25, 2008 0:19 UTC (Mon) by cras (guest, #7000)In reply to: It's far from complete by fbh
Parent article: vmsplice(): the making of a local root exploit
I don't know if the exploit was supposed to work as a 64bit binary (I crashed my machine when testing one version of it), but that code doesn't translate to "NULL" on 64bit systems.
Posted Feb 25, 2008 9:02 UTC (Mon)
by fbh (guest, #49754)
[Link]
It's far from complete
Acutally you're right.
It's a trick to compute the addresses of the fake "struct page" structures on both 32 and 64
bits platforms.
It should work on 64 bits platforms. I don't know why it doesn't in your case though but it's
just a matter of tuning some values in the exploit code probably.
Thanks.