← back
CVE-2013-0268

CVE-2013-0268

EPSS 1.6%
The msr_open function in arch/x86/kernel/msr.c in the Linux kernel before 3.7.6 allows local users to bypass intended capability restrictions by executing a crafted application as root, as demonstrated by msr32.c.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/27297unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c903f0456bc69176912dee6dd25c6a66ee1aed00http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00018.htmlhttp://lists.opensuse.org/opensuse-security-announce/2013-07/msg00018.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=908693https://github.com/torvalds/linux/commit/c903f0456bc69176912dee6dd25c6a66ee1aed00http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.7.6http://www.openwall.com/lists/oss-security/2013/02/07/12