Linux kernel do_brk() exploit v1.13 Vulnerability exploited: CAN-2003-0961 - BID-9138 Category: Exploits/Local Because of a bug in the Linux kernel, it is possible to write to kernel memory and gain root privileges. The Linux kernel function do_brk(), which handles the brk() syscall used by programs to increase or decrease the amount of heap memory they are using, does not sanity-check its argument.This module exploits this bug and writes to kernel memory in order to execute privileged code. It changes the credentials of its parent, which is the already running agent.This bug can even be exploited on a hardened Linux kernel, patched with PaX or grsecurity for instance. Supported Systems: RedHat Linux 7.3 (i386) RedHat Linux 8 (i386) RedHat Linux 9 (i386) SuSE Linux 8 (i386) SuSE Linux 8.1 (i386) Mandrake Linux 8.1 (i386) Mandrake Linux 8.2 (i386) This module is included in the latest version of CORE IMPACT, the first automated comprehensive penetration testing product for accurately identifying information security risks. Click here to learn more about the product.