On 11/02/2008, jaytee@clear.net.nz <jaytee@clear.net.nz> wrote:

I was a bit confused before but now it is total
Regards John

In short there's a bit of a bug in the linux kernel. You run the exploit program as a normal user and it gives you a root shell, no sudo, no root passwords. This is really bad for any machine that has ordinary user logins who aren't supposed to get access to root (eg hoiho, our WLUG server)

Of course there's already a patch that fixes the bug, and I expect most distros will have an urgent security update by tomorrow if it isn't out there already.