Lucene search
K

4 matches found

Exploit DB
Exploit DB
added 2017/06/28 12:0 a.m.167 views

OpenBSD - 'at Stack Clash' Local Privilege Escalation

/ OpenBSDat.c for CVE-2017-1000373 Copyright c 2017 Qualys, Inc. slowsort adapted from lib/libc/stdlib/qsort.c: Copyright c 1992, 1993 The Regents of the University of California. All rights reserved. Redistribution and use in source and binary forms, with or without modification, are permitted...

9.8CVSS8AI score0.1338EPSS
Exploits3
exploitpack
exploitpack
added 2017/06/28 12:0 a.m.119 views

OpenBSD - at Stack Clash Local Privilege Escalation

OpenBSD - at Stack Clash Local Privilege Escalation / OpenBSDat.c for CVE-2017-1000373 Copyright c 2017 Qualys, Inc. slowsort adapted from lib/libc/stdlib/qsort.c: Copyright c 1992, 1993 The Regents of the University of California. All rights reserved. Redistribution and use in source and binary...

7.5CVSS0.3AI score0.1338EPSS
Exploits3
Cvelist
Cvelist
added 2017/06/19 4:0 p.m.30 views

CVE-2017-1000372

A flaw exists in OpenBSD's implementation of the stack guard page that allows attackers to bypass it resulting in arbitrary code execution using setuid binaries such as /usr/bin/at. This affects OpenBSD 6.1 and possibly earlier versions...

9.8AI score0.03955EPSS
Exploits3References3
CVE
CVE
added 2017/06/19 4:0 p.m.97 views

CVE-2017-1000372

OpenBSD stack guard page vulnerability (CVE-2017-1000372) allows bypass of the stack guard and arbitrary code execution via setuid binaries such as /usr/bin/at. Affected: OpenBSD 6.1 and possibly earlier. Root cause: improper implementation/handling of the stack guard page, enabling bypass under ...

9.8CVSS9.7AI score0.03955EPSS
Exploits3References3Affected Software1
Rows per page
Query Builder