CVE-2018-1124

CVSS 7.3 HIGHEPSS 1.8%CWE-122 CWE-190

procps-ng before version 3.3.15 is vulnerable to multiple integer overflows leading to a heap corruption in file2strvec function. This allows a privilege escalation for a local attacker who can create entries in procfs by starting processes, which could result in crashes or arbitrary code execution in proc utilities run by other users.

CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Produtos afetados

[UNKNOWN] · procps-ng

PoCs públicas encontradas — 2

cve_referencewww.exploit-db.com/exploits/44806/não verificado exploitdbwww.exploit-db.com/exploits/44806não verificado

⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00058.html http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00059.html https://access.redhat.com/errata/RHSA-2018:1700 https://access.redhat.com/errata/RHSA-2018:1777 https://access.redhat.com/errata/RHSA-2018:1820 https://access.redhat.com/errata/RHSA-2018:2267 https://access.redhat.com/errata/RHSA-2018:2268 https://access.redhat.com/errata/RHSA-2019:1944 https://access.redhat.com/errata/RHSA-2019:2401 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1124 http://seclists.org/oss-sec/2018/q2/122 https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0