NetBSD NFS Kernel Vulnerability

This was from InfoSect's first group auditing session.

http://mail-index.netbsd.org/source-changes/2018/01/25/msg091481.html

There must be a lot of embedded NetBSD systems running NFS..

Comments

Post a Comment

Popular posts from this blog

Linux Heap TCache Poisoning

Linux Heap TCache Poisoning In this paper, I introduce the reader to a heap metadata corruption against the current Linux Heap Allocator, ptmalloc. The attack is performed via corrupting, or poisoning the tcache such that malloc returns an arbitrary pointer. This may allow for control flow hijacking if malloc returns a pointer to a function pointer and an attacker is able to write to that malloc returned buffer. TCache poisoning is possible from heap corruption including buffer overflows and Use-After-Frees.

Linux Heap TCache Poisoning.PDF
Read more