4 matches found
OpenBSD - 'at Stack Clash' Local Privilege Escalation
/ OpenBSDat.c for CVE-2017-1000373 Copyright c 2017 Qualys, Inc. slowsort adapted from lib/libc/stdlib/qsort.c: Copyright c 1992, 1993 The Regents of the University of California. All rights reserved. Redistribution and use in source and binary forms, with or without modification, are permitted...
OpenBSD - at Stack Clash Local Privilege Escalation
OpenBSD - at Stack Clash Local Privilege Escalation / OpenBSDat.c for CVE-2017-1000373 Copyright c 2017 Qualys, Inc. slowsort adapted from lib/libc/stdlib/qsort.c: Copyright c 1992, 1993 The Regents of the University of California. All rights reserved. Redistribution and use in source and binary...
CVE-2017-1000372
A flaw exists in OpenBSD's implementation of the stack guard page that allows attackers to bypass it resulting in arbitrary code execution using setuid binaries such as /usr/bin/at. This affects OpenBSD 6.1 and possibly earlier versions...
CVE-2017-1000372
OpenBSD stack guard page vulnerability (CVE-2017-1000372) allows bypass of the stack guard and arbitrary code execution via setuid binaries such as /usr/bin/at. Affected: OpenBSD 6.1 and possibly earlier. Root cause: improper implementation/handling of the stack guard page, enabling bypass under ...