Vulnerabilities

CVE-2019-13049

by Fred · 29/06/2019

An integer wrap in kernel/sys/syscall.c in ToaruOS 1.10.10 allows users to map arbitrary kernel pages into userland process space via TOARU_SYS_FUNC_MMAP, leading to escalation of privileges.

Date published : 2019-06-29

https://github.com/mehsauce/kowasuos/blob/master/exploits/kowasu-sysfunc-revenge.c

Related

Tags: Cybersecurity Alert