7

CVE-2018-1171

EPSS 0.2%
Published 19.03.2018 18:29:00
Last modified 21.11.2024 03:59:19
Source zdi-disclosures@trendmicro.com
Teams watchlist Login
Open Login

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Joyent SmartOS release-20170803-20170803T064301Z. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the DTrace DOF files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated object. An attacker can leverage this vulnerability to execute code under the context of the host OS. Was ZDI-CAN-5106.

Affected products Warnungen 0 Metrics 3 CWE 1 References 8

Data is provided by the National Vulnerability Database (NVD)

Joyent ≫ Smartos Version20170803-20170803t064301z

Oracle ≫ Solaris Version10

Oracle ≫ Solaris Version11.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.2%	0.394

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7	1	5.9	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	6.9	3.4	10	AV:L/AC:M/Au:N/C:C/I:C/A:C

CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html

Patch

Third Party Advisory

http://www.securityfocus.com/bid/104799

Third Party Advisory

VDB Entry

http://www.securitytracker.com/id/1041303

Third Party Advisory

VDB Entry

https://help.joyent.com/hc/en-us/articles/360000608188

Vendor Advisory

https://zerodayinitiative.com/advisories/ZDI-18-236

Third Party Advisory

VDB Entry

https://nvd.nist.gov/vuln/detail/CVE-2018-1171

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2018-1171

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2018-1171

EUVD