← volver
CVE-2015-0235

CVE-2015-0235

EPSS 94.9%
Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and other 2.x versions before 2.18, allows context-dependent attackers to execute arbitrary code via vectors related to the (1) gethostbyname or (2) gethostbyname2 function, aka "GHOST."
Productos afectados
n/a · n/a
PoCs públicas encontradas24
githubgithub.com/aaronfay/CVE-2015-0235-test15githubgithub.com/makelinux/CVE-2015-0235-workaround6githubgithub.com/fser/ghost-checker6githubgithub.com/arm13/ghost_exploit4githubgithub.com/mikesplain/CVE-2015-0235-cookbook3githubgithub.com/nickanderson/cfengine-CVE_2015_02351githubgithub.com/furyutei/CVE-2015-0235_GHOST1githubgithub.com/adherzog/ansible-CVE-2015-0235-GHOST1githubgithub.com/koudaiii-archives/cookbook-update-glibc0githubgithub.com/F88/ghostbusters150githubgithub.com/1and1-serversupport/ghosttester0githubgithub.com/alanmeyer/CVE-glibc0githubgithub.com/sUbc0ol/CVE-2015-02350githubgithub.com/chayim/GHOSTCHECK-cve-2015-02350githubgithub.com/tobyzxj/CVE-2015-02350githubgithub.com/favoretti/lenny-libc60exploitdbwww.exploit-db.com/exploits/36421no verificadocve_referencepacketstormsecurity.com/files/130768/EMC-Secure-Remote-Services-GHOST-SQL-Injection-Command-Injection.htmlno verificadocve_referencepacketstormsecurity.com/files/130974/Exim-GHOST-glibc-gethostbyname-Buffer-Overflow.htmlno verificadocve_referencepacketstormsecurity.com/files/153278/WAGO-852-Industrial-Managed-Switch-Series-Code-Execution-Hardcoded-Credentials.htmlno verificadocve_referencepacketstormsecurity.com/files/164014/Moxa-Command-Injection-Cross-Site-Scripting-Vulnerable-Software.htmlno verificadocve_referencepacketstormsecurity.com/files/167552/Nexans-FTTO-GigaSwitch-Outdated-Components-Hardcoded-Backdoor.htmlno verificadoexploitdbwww.exploit-db.com/exploits/35951no verificadocve_referencepacketstormsecurity.com/files/130171/Exim-ESMTP-GHOST-Denial-Of-Service.htmlno verificado
⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://blogs.sophos.com/2015/01/29/sophos-products-and-the-ghost-vulnerability-affecting-linux/http://linux.oracle.com/errata/ELSA-2015-0090.htmlhttp://linux.oracle.com/errata/ELSA-2015-0092.htmlhttp://lists.apple.com/archives/security-announce/2015/Jun/msg00002.htmlhttp://lists.apple.com/archives/security-announce/2015/Oct/msg00005.htmlhttp://lists.apple.com/archives/security-announce/2015/Sep/msg00008.htmlhttp://marc.info/?l=bugtraq&m=142296726407499&w=2http://marc.info/?l=bugtraq&m=142721102728110&w=2http://marc.info/?l=bugtraq&m=142722450701342&w=2http://marc.info/?l=bugtraq&m=142781412222323&w=2http://marc.info/?l=bugtraq&m=143145428124857&w=2http://packetstormsecurity.com/files/130171/Exim-ESMTP-GHOST-Denial-Of-Service.html