recvmmsg.c - linux 3.4+ local root (CONFIG_X86_X32=y)

vendor:

Linux Kernel

by:

rebel

7.5

CVSS

HIGH

local root

264

CWE

Product Name: Linux Kernel

Affected Version From: Linux 3.4+

Affected Version To: Not specified

Patch Exists: NO

Related CWE: CVE-2014-0038

CPE: cpe:2.3:o:linux:linux_kernel:3.4:*:*:*:*:*:*:*

Metasploit: https://www.rapid7.com/db/vulnerabilities/moodle-cve-2014-7831/, https://www.rapid7.com/db/vulnerabilities/suse-cve-2014-0038/, https://www.rapid7.com/db/modules/exploit/linux/local/recvmmsg_priv_esc/

Other Scripts:

Platforms Tested: Ubuntu 3.11.0-15-generic

2014

recvmmsg.c – linux 3.4+ local root (CONFIG_X86_X32=y)

This exploit takes advantage of the x32 ABI with recvmmsg vulnerability (CVE-2014-0038) in Linux 3.4+ kernels. The exploit allows an attacker to gain root privileges on the target system. The vulnerability is caused by a flaw in the recvmmsg system call, which can be exploited to escalate privileges.

Mitigation:

To mitigate this vulnerability, it is recommended to apply the latest security patches and updates to the affected system. Additionally, it is advised to restrict access to vulnerable systems and implement strong access controls.

Source

recvmmsg.c – linux 3.4+ local root (CONFIG_X86_X32=y)

Mitigation:

Exploit-DB raw data: