← back
CVE-2015-0235

CVE-2015-0235

EPSS 94.9%
Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and other 2.x versions before 2.18, allows context-dependent attackers to execute arbitrary code via vectors related to the (1) gethostbyname or (2) gethostbyname2 function, aka "GHOST."
Affected products
n/a · n/a
public PoCs found24
githubgithub.com/aaronfay/CVE-2015-0235-test15githubgithub.com/makelinux/CVE-2015-0235-workaround6githubgithub.com/fser/ghost-checker6githubgithub.com/arm13/ghost_exploit4githubgithub.com/mikesplain/CVE-2015-0235-cookbook3githubgithub.com/nickanderson/cfengine-CVE_2015_02351githubgithub.com/furyutei/CVE-2015-0235_GHOST1githubgithub.com/adherzog/ansible-CVE-2015-0235-GHOST1githubgithub.com/koudaiii-archives/cookbook-update-glibc0githubgithub.com/F88/ghostbusters150githubgithub.com/1and1-serversupport/ghosttester0githubgithub.com/alanmeyer/CVE-glibc0githubgithub.com/sUbc0ol/CVE-2015-02350githubgithub.com/chayim/GHOSTCHECK-cve-2015-02350githubgithub.com/tobyzxj/CVE-2015-02350githubgithub.com/favoretti/lenny-libc60exploitdbwww.exploit-db.com/exploits/36421unverifiedcve_referencepacketstormsecurity.com/files/130768/EMC-Secure-Remote-Services-GHOST-SQL-Injection-Command-Injection.htmlunverifiedcve_referencepacketstormsecurity.com/files/130974/Exim-GHOST-glibc-gethostbyname-Buffer-Overflow.htmlunverifiedcve_referencepacketstormsecurity.com/files/153278/WAGO-852-Industrial-Managed-Switch-Series-Code-Execution-Hardcoded-Credentials.htmlunverifiedcve_referencepacketstormsecurity.com/files/164014/Moxa-Command-Injection-Cross-Site-Scripting-Vulnerable-Software.htmlunverifiedcve_referencepacketstormsecurity.com/files/167552/Nexans-FTTO-GigaSwitch-Outdated-Components-Hardcoded-Backdoor.htmlunverifiedexploitdbwww.exploit-db.com/exploits/35951unverifiedcve_referencepacketstormsecurity.com/files/130171/Exim-ESMTP-GHOST-Denial-Of-Service.htmlunverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://blogs.sophos.com/2015/01/29/sophos-products-and-the-ghost-vulnerability-affecting-linux/http://linux.oracle.com/errata/ELSA-2015-0090.htmlhttp://linux.oracle.com/errata/ELSA-2015-0092.htmlhttp://lists.apple.com/archives/security-announce/2015/Jun/msg00002.htmlhttp://lists.apple.com/archives/security-announce/2015/Oct/msg00005.htmlhttp://lists.apple.com/archives/security-announce/2015/Sep/msg00008.htmlhttp://marc.info/?l=bugtraq&m=142296726407499&w=2http://marc.info/?l=bugtraq&m=142721102728110&w=2http://marc.info/?l=bugtraq&m=142722450701342&w=2http://marc.info/?l=bugtraq&m=142781412222323&w=2http://marc.info/?l=bugtraq&m=143145428124857&w=2http://packetstormsecurity.com/files/130171/Exim-ESMTP-GHOST-Denial-Of-Service.html