Journal in Computer Virology

, Volume 4, Issue 1, pp 39–60

Linux 2.6 kernel exploits

SSTIC 2007 Best Academic Papers

DOI: 10.1007/s11416-007-0066-9

Cite this article as:
Duverger, S. J Comput Virol (2008) 4: 39. doi:10.1007/s11416-007-0066-9
  • 180 Downloads

Abstract

Exploits are increasingly targeting operating system kernel vulnerabilities. For one, applications in user space are better protected by the developers and the kernel than in the past. Second, the promise of a successful kernel exploit is tantalizing full control over the targeted environment. Under Linux, kernel space exploits differ noticeably from user space exploits. Constraints such as execution context problems, module relocation, system calls usage prerequisites and kernel shellcode development have to be dealt with. These kernel exploits are the focus of this paper. We first give an overview of major kernel data structures which are used to handle processes under Linux 2.6 on an Intel IA-32 architecture. We then illustrate the aforementioned constraints by means of two practical Wifi Linux Drivers Stack Overflow exploits.

Copyright information

© Springer-Verlag France 2007

Authors and Affiliations

  1. 1.EADS Innovation WorksSuresnesFrance