CVE-2012-0056

EPSS 10.9%

The mem_write function in the Linux kernel before 3.2.2, when ASLR is disabled, does not properly check permissions when writing to /proc/<pid>/mem, which allows local users to gain privileges by modifying process memory, as demonstrated by Mempodipper.

Affected products

n/a · n/a

public PoCs found — 4

githubgithub.com/srclib/CVE-2012-0056★ 1 githubgithub.com/pythonone/CVE-2012-0056★ 1 exploitdbwww.exploit-db.com/exploits/18411unverified exploitdbwww.exploit-db.com/exploits/35161unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://blog.zx2c4.com/749 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=e268337dfe26dfc7efd422a804dbb27977a3cccc https://bugzilla.redhat.com/show_bug.cgi?id=782642 http://secunia.com/advisories/47708 http://ubuntu.com/usn/usn-1336-1 http://www.kb.cert.org/vuls/id/470151 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.2 http://www.openwall.com/lists/oss-security/2012/01/18/1 http://www.openwall.com/lists/oss-security/2012/01/18/2 http://www.openwall.com/lists/oss-security/2012/01/19/4 http://www.openwall.com/lists/oss-security/2012/01/22/4 http://www.redhat.com/support/errata/RHSA-2012-0052.html