Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2009-2692 PoC — Linux Kernel sock_sendpage()函数空指针引用漏洞

Source
https://github.com/jdvalentini/CVE-2009-2692
Associated Vulnerability
Title:Linux Kernel sock_sendpage()函数空指针引用漏洞 (CVE-2009-2692)
Description:The Linux kernel 2.6.0 through 2.6.30.4, and 2.4.4 through 2.4.37.4, does not initialize all function pointers for socket operations in proto_ops structures, which allows local users to trigger a NULL pointer dereference and gain privileges by using mmap to map page zero, placing arbitrary code on this page, and then invoking an unavailable operation, as demonstrated by the sendpage operation (sock_sendpage function) on a PF_PPPOX socket.
Description
Linux Null pointer dereference
Readme
# CVE-2009-2692
Linux Null pointer dereference

This is just the compiled binary of the code available in https://www.exploit-db.com/exploits/9545/

Compiled for education purposes

It was compiled under CentOS 4.8
File Snapshot

 [4.0K]  /data/pocs/cffec25911bca16d91a82ee655043ed2f8d1656c
├── [6.6K]  9545
├── [ 34K]  LICENSE
└── [ 215]  README.md

0 directories, 3 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →