Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
‱added 2024/02/08 12:0 a.m.‱39 views

CentOS 8 : glibc (CESA-2023:5455)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2023:5455 advisory. - A flaw was found in glibc. When the getaddrinfo function is called with the AFUNSPEC address family and the system is configured with no-aaaa mode vi...

7.8CVSS7.3AI score0.81422EPSS
Exploits29References5
GithubExploit
GithubExploit
‱added 2024/01/20 6:47 p.m.‱487 views

Exploit for Heap-based Buffer Overflow in Gnu Glibc

GNU C Library's Dynamic Loader Vulnerability CVE-2023-4911...

7.8CVSS7.6AI score0.81422EPSS
Exploits28
Broadcom
Broadcom
‱added 2024/01/17 12:0 a.m.‱39 views

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBCTUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBCTUNABLES environment variables when launching binaries with SUID permission to execute code...

7.8CVSS7.6AI score0.81422EPSS
Exploits28
Packet Storm
Packet Storm
‱added 2023/12/21 12:0 a.m.‱803 views

Glibc Tunables Privilege Escalation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 561, '3602eac894717d56555552c84fc6b0e4d6a4af72' = 561, 'a99db3715218b641780b04323e4ae5953d68a927' = 561, 'a8daca28288575ffc8c7641d40901b0148958fb1...

7.8CVSS7.4AI score0.81422EPSS
Exploits28
0day.today
0day.today
‱added 2023/12/21 12:0 a.m.‱468 views

Glibc Tunables Privilege Escalation Exploit

A buffer overflow exists in the GNU C Library's dynamic loader ld.so while processing the GLIBCTUNABLES environment variable. It has been dubbed Looney Tunables. This issue allows an local attacker to use maliciously crafted GLIBCTUNABLES when launching binaries with SUID permission to execute co...

7.8CVSS8.3AI score0.81422EPSS
Exploits28
GithubExploit
GithubExploit
‱added 2023/10/25 11:59 a.m.‱1433 views

Exploit for Heap-based Buffer Overflow in Gnu Glibc

CVE-2023-4911-Looney-Tunables Looney Tunables Local privilege...

7.8CVSS8AI score0.81422EPSS
Exploits28
Tenable Nessus
Tenable Nessus
‱added 2023/10/10 12:0 a.m.‱55 views

Oracle Linux 8 : glibc (ELSA-2023-5455)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-5455 advisory. - CVE-2023-4527: Stack read overflow in getaddrinfo in no-aaa mode. - CVE-2023-4813: potential use-after-free in gaihinet RHEL-2435. Tenable has...

7.8CVSS7AI score0.81422EPSS
Exploits29References5
0day.today
0day.today
‱added 2023/10/08 12:0 a.m.‱813 views

glibc ld.so Local Privilege Escalation Vulnerability

Dubbed Looney Tunables, Qualys discovered a buffer overflow vulnerability in the glibc dynamic loader's processing of the GLIBCTUNABLES environment variable. This vulnerability was introduced in April 2021 glibc 2.34 by commit 2ed18c. Looney Tunables: Local Privilege Escalation in the glibc's ld....

7.8CVSS8.5AI score0.81422EPSS
Exploits38
Tenable Nessus
Tenable Nessus
‱added 2023/10/06 12:0 a.m.‱52 views

Oracle Linux 9 : glibc (ELSA-2023-12854)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-12854 advisory. 2.34-60.0.3 - CVE-2023-4911: tunables: Terminate immediately if end of input is reached Reviewed by: Jose E. Marchesi Tenable has extracted the preceding...

7.8CVSS6.9AI score0.81422EPSS
Exploits28References2
Packet Storm
Packet Storm
‱added 2023/10/06 12:0 a.m.‱668 views

glibc ld.so Local Privilege Escalation

Qualys Security Advisory Looney Tunables: Local Privilege Escalation in the glibc's ld.so CVE-2023-4911 ======================================================================== Contents ======================================================================== Summary Analysis Proof of concept...

7.8CVSS7.1AI score0.81422EPSS
Exploits38
GithubExploit
GithubExploit
‱added 2023/10/04 2:12 p.m.‱612 views

Exploit for Heap-based Buffer Overflow in Gnu Glibc

PoC of CVE-2023-4911 "Looney Tunables" This is a PoC of CVE-2...

7.8CVSS7.2AI score0.81422EPSS
Exploits28
NVD
NVD
‱added 2023/10/03 6:15 p.m.‱26 views

CVE-2023-4911

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBCTUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBCTUNABLES environment variables when launching binaries with SUID permission to execute code...

7.8CVSS8AI score0.81422EPSS
Exploits28References30
OSV
OSV
‱added 2023/10/03 6:15 p.m.‱8 views

AZL-34733 CVE-2023-4911 affecting package glibc for versions less than 2.38-6

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBCTUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBCTUNABLES environment variables when launching binaries with SUID permission to execute code...

7.8CVSS7.1AI score0.81422EPSS
Exploits28References1
Prion
Prion
‱added 2023/10/03 6:15 p.m.‱34 views

Buffer overflow

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBCTUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBCTUNABLES environment variables when launching binaries with SUID permission to execute code...

4.3CVSS8AI score0.81422EPSS
Exploits28References25Affected Software15
Debian CVE
Debian CVE
‱added 2023/10/03 5:25 p.m.‱54 views

CVE-2023-4911

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBCTUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBCTUNABLES environment variables when launching binaries with SUID permission to execute code...

7.8CVSS7.2AI score0.81422EPSS
Exploits28
OSV
OSV
‱added 2023/10/03 5:25 p.m.‱44 views

CVE-2023-4911 Glibc: buffer overflow in ld.so leading to privilege escalation

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBCTUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBCTUNABLES environment variables when launching binaries with SUID permission to execute code...

7.8CVSS7.2AI score0.81422EPSS
Exploits28References34
CVE
CVE
‱added 2023/10/03 5:25 p.m.‱1379 views

CVE-2023-4911

CVE-2023-4911 is a buffer overflow in the GNU C Library ld.so when processing GLIBC_TUNABLES, enabling local privilege escalation via malicious GLIBC_TUNABLES values when launching binaries with SUID. Affected: glibc, with versions older than 2.38-6 (per CBLMARINER:34733) and older listings notin...

7.8CVSS8.2AI score0.81422EPSS
In wildExploits28References30Affected Software1
RedhatCVE
RedhatCVE
‱added 2023/10/03 5:24 p.m.‱191 views

CVE-2023-4911

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBCTUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBCTUNABLES environment variables when launching binaries with SUID permission to execute code...

7.8CVSS8AI score0.81422EPSS
Exploits28References6
Qualys Blog
Qualys Blog
‱added 2023/10/03 5:21 p.m.‱186 views

CVE-2023-4911: Looney Tunables – Local Privilege Escalation in the glibc’s ld.so

The Qualys Threat Research Unit TRU has discovered a buffer overflow vulnerability in GNU C Librarys dynamic loaders processing of the GLIBCTUNABLES environment variable. We have successfully identified and exploited this vulnerability a local privilege escalation that grants full root privileges...

4.3CVSS7.8AI score0.81422EPSS
Exploits28
ATTACKERKB
ATTACKERKB
‱added 2023/10/03 12:0 a.m.‱41 views

CVE-2023-4911

A buffer overflow was discovered in the GNU C Library’s dynamic loader ld.so while processing the GLIBCTUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBCTUNABLES environment variables when launching binaries with SUID permission to execute code...

7.8CVSS8.2AI score0.81422EPSS
In wildExploits28References29
Rows per page
Query Builder