Mostly, yes exploits in the wild have been detected in HTTP requests, and as the researcher assumes this exploit could have existed for a very long time.
And it's not a local privilege escalation only as the write up assumes, it was exploited remotely!
For a second that sounded like the group "Cult of the dead cow" and their showpiece trojan "Back Orifice", designed to popularize the insecurity of Windows 98.
I like how "Am I affected by the bug?" part checks your user agent string for "Linux" and says "yes" or "no" accordingly.
As if I wasn't reading that page from a phone while running Linux on a server. Then again, the exploit didn't work for me on unpatched 3.4.112 kernel, so it might actually be correct.
11 comments
[ 4.6 ms ] story [ 53.2 ms ] thread[0] https://news.ycombinator.com/item?id=12756006
Mostly, yes exploits in the wild have been detected in HTTP requests, and as the researcher assumes this exploit could have existed for a very long time.
And it's not a local privilege escalation only as the write up assumes, it was exploited remotely!
For a second that sounded like the group "Cult of the dead cow" and their showpiece trojan "Back Orifice", designed to popularize the insecurity of Windows 98.
As if I wasn't reading that page from a phone while running Linux on a server. Then again, the exploit didn't work for me on unpatched 3.4.112 kernel, so it might actually be correct.