vendor:
N/A
by:
Jann Horn
7.5
CVSS
HIGH
Race Condition
362
CWE
Product Name: N/A
Affected Version From: All
Affected Version To: All
Patch Exists: YES
Related CWE: CVE-2018-1000024
CPE: N/A
Metasploit:
https://www.rapid7.com/db/vulnerabilities/debian-cve-2018-1000024/, https://www.rapid7.com/db/vulnerabilities/redhat_linux-cve-2018-1000024/, https://www.rapid7.com/db/vulnerabilities/oracle_linux-cve-2018-1000024/, https://www.rapid7.com/db/vulnerabilities/ubuntu-cve-2018-1000024/, https://www.rapid7.com/db/vulnerabilities/amazon_linux-cve-2018-1000024/, https://www.rapid7.com/db/vulnerabilities/alpine-linux-cve-2018-1000024/, https://www.rapid7.com/db/vulnerabilities/huawei-euleros-2_0_sp1-cve-2018-1000024/, https://www.rapid7.com/db/vulnerabilities/oracle-solaris-cve-2018-1000024/, https://www.rapid7.com/db/vulnerabilities/suse-cve-2018-1000024/, https://www.rapid7.com/db/vulnerabilities/centos_linux-cve-2018-1000024/, https://www.rapid7.com/db/vulnerabilities/huawei-euleros-2_0_sp2-cve-2018-1000024/, https://www.rapid7.com/db/vulnerabilities/freebsd-cve-2018-1000024/
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Unix
2018
Unix Domain Socket Connect() Race Condition
This exploit is related to a race condition vulnerability in the connect() system call of Unix Domain Sockets. The vulnerability occurs when a listening socket is shutdown before the connect() system call is completed. This can lead to a denial of service or privilege escalation.
Mitigation:
The best way to mitigate this vulnerability is to ensure that the listening socket is not shutdown until the connect() system call is completed.