Vigil@nce: Linux kernel, data modification via debugfs/sysfs
February 2011 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/
SYNTHESIS OF THE VULNERABILITY
A local attacker can write to debugfs/sysfs files, in order to
alter the system behavior.
– Severity: 1/4
– Creation date: 22/02/2011
IMPACTED PRODUCTS
– Linux kernel
DESCRIPTION OF THE VULNERABILITY
The debugfs and sysfs file systems contain files used to debug or
to administer the system.
However, twenty files of debugfs/sysfs can be written by every
local user. The impact depends on the file:
– timer : alter the clock
– voltage : stop the CPU
– mbox-db5500 : alter the modem
– nvram : write to memory
– etc.
A local attacker can therefore write to debugfs/sysfs files, in
order to alter the system behavior.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Linux-kernel-data-modification-via-debugfs-sysfs-10386