- 4.20.x before 4.20.8
- 4.19.x before 4.19.21
- 4.18.x
- 4.17.x
libsctp1
libsctp-dev
sudo modprobe sctp
- (for using
./checklogs.sh
) Read access to/var/log/syslog
, viadmesg
or similar
Compile with ./build.sh
. Run with ./sctp_uaf <PORT>
and ./sctp_uaf_spam <PORT>
. The latter attempts to allocate memory in the space where asoc
used to reside.
You can check if ./sctp_uaf_spam
succeeds by using ./checklogs.sh
, which follows the syslogs for any abnormalities in syslog output. Note that you need to enter a new port number with every execution. For example: for i in 3000..30000; do ./sctp_uaf_spam $i; done