CVE-2016-1247
CVE-2016-1247
The nginx package before 1.6.2-5+deb8u3 on Debian jessie, the nginx packages before 1.4.6-1ubuntu3.6 on Ubuntu 14.04 LTS, before 1.10.0-0ubuntu0.16.04.3 on Ubuntu 16.04 LTS, and before 1.10.1-0ubuntu1.1 on Ubuntu 16.10, and the nginx ebuild before 1.10.2-r3 on Gentoo allow local users with access to the web server user account to gain root privileges via a symlink attack on the error log.
Affected products
n/a · n/apublic PoCs found — 3
cve_referencepacketstormsecurity.com/files/139750/Nginx-Debian-Based-Distros-Root-Privilege-Escalation.htmlunverifiedcve_referencewww.exploit-db.com/exploits/40768/unverifiedexploitdbwww.exploit-db.com/exploits/40768unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://packetstormsecurity.com/files/139750/Nginx-Debian-Based-Distros-Root-Privilege-Escalation.htmlhttp://seclists.org/fulldisclosure/2016/Nov/78http://seclists.org/fulldisclosure/2017/Jan/33https://legalhackers.com/advisories/Nginx-Exploit-Deb-Root-PrivEsc-CVE-2016-1247.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CBIZEKHBOCKO7FUMCO4X53ENMWU5OYFX/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ESTIADC7BDB6VTH4JAP6C6OCW2CQ4NHP/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P3WOO7E5R2HT5XVOIOFPEFALILVOWZUF/https://security.gentoo.org/glsa/201701-22https://www.exploit-db.com/exploits/40768/https://www.youtube.com/watch?v=aTswN1k1fQshttp://www.debian.org/security/2016/dsa-3701http://www.securityfocus.com/archive/1/539796/100/0/threaded