5 matches found
EUVD-2018-11804
Malware in sbrugna...
Joyent SmartOS SMB_IOC_SVCENUM IOCTL elevation of privilege vulnerability
Joyent SmartOS is a set of open source operating system from Joyent, USA. A security vulnerability exists in the SMBIOCTREERELE ioctl in Joyent SmartOS release-20170803-20170803T064301Z, which stems from the program failing to correctly detect user-submitted data, resulting in the size of copied...
Design/Logic Flaw
This vulnerability allows local attackers to escalate privileges on vulnerable installations of Joyent SmartOS release-20170803-20170803T064301Z. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw...
CVE-2018-1166
CVE-2018-1166 affects Joyent SmartOS release-20170803… and is tied to the SMBIOC_TREE_RELE ioctl. The root cause is a lack of validation of an object’s existence before performing operations on it, enabling a local attacker who can run low-privileged code to escalate privileges and execute code w...
Joyent SmartOS SMBIOC_TREE_RELE Use-After-Free Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on vulnerable installations of Joyent SmartOS. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the SMBIOCTREERELE...