Title: 08.ret2dir(return-to-direct-mapped memory)  
Author: Lazenca.0x0 Feb 27, 2019
Last Changed by: Lazenca.0x0 Jul 20, 2019
Tiny Link: (useful for email) https://www.lazenca.net/x/MQGHAQ
Export As: Word · PDF  
Hierarchy
Parent Page
    Page: 03.Linux Kernel Exploitation Tutorial
Labels
There are no labels assigned to this page.
Recent Changes
Time Editor  
Jul 20, 2019 13:49 Lazenca.0x0 View Changes
Jul 19, 2019 16:41 Lazenca.0x0  
Outgoing Links
External Links (28)
    https://github.com/salls/kernel-exploits/blob/master/CVE-20…
    https://en.wikipedia.org/wiki/Virtual_memory#Paged_virtual_…
    https://www.usenix.org/conference/usenixsecurity14/technica…
    https://www.kernel.org/doc/Documentation/vm/pagemap.txt
    https://linux-kernel-labs.github.io/master/labs/memory_mapp…
    https://en.wikipedia.org/wiki/Virtual_memory
    https://en.wikipedia.org/wiki/Memory_management_unit
    https://blog.lexfo.fr/cve-2017-11176-linux-kernel-exploitat…
    www.cs.columbia.edu/~vpk/research/ret2dir/
    www.cs.columbia.edu/~vpk/
    https://elixir.bootlin.com/linux/v3.9/source/Documentation/…
    https://www.cs.columbia.edu/~vpk/research/ret2dir/linux-3.1…
    https://en.wikipedia.org/wiki/Virtual_address_space
    https://www.kernel.org/doc/gorman/html/understand/understan…
    https://en.wikipedia.org/wiki/Page_table
    cs.columbia.edu
    https://www.usenix.org/system/files/conference/usenixsecuri…
    https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-U…
    https://www.blackhat.com/docs/eu-14/materials/eu-14-Kemerli…
    https://github.com/bittorrent3389/demo-physmap-spraying
    mkosaki.blog46.fc2.com/?m&no=826
    https://lwn.net/Articles/117749/
    https://lwn.net/Articles/717293/
    https://salls.github.io/Linux-Kernel-CVE-2017-5123/
    https://www.usenix.org/sites/default/files/conference/prote…
    https://blog.jeffli.me/blog/2014/11/08/pagemap-interface-of…
    pages.cs.wisc.edu/~remzi/OSTEP/vm-smalltables.pdf
    https://www.cnblogs.com/pengdonglin137/p/7857404.html