Linux kernel mremap-unmap exploit v1.5 Vulnerability exploited: CAN-2004-0077 - BID-9686 Category: Exploits/Local A security vulnerability in the Linux kernel may allow an attacker to insert arbitrary code into the memory of a suid-root process. As stated in the advisory published by iSEC Security Research: "A critical security vulnerability has been found in the Linux kernel memory management code inside the mremap(2) system call due to missing function return value check. [...] Proper exploitation of this vulnerability leads to local privilege escalation giving an attacker full super-user privileges."Vulnerable versions of the Linux kernel: "2.2 up to and including 2.2.25, 2.4 up to to and including 2.4.24, 2.6 up to to and including 2.6.2".Upon successful exploitation, this module will deploy a new level0 agent. Supported Systems: RedHat Linux 9 (i386) This module is included in the latest version of CORE IMPACT, the first automated comprehensive penetration testing product for accurately identifying information security risks. Click here to learn more about the product.