CVE-2017-1000372CVE-2017-1000372

Affected configuration(s):

cpe:/o:openbsd:openbsd:6.1

Date published: 2017-06-19T12:29:00.453-04:00

Date last modified: 2017-06-29T10:00:07.117-04:00

CVSS Score: 7.5

Principal attack vector: NETWORK

Complexity:  LOW

Reference URL: http://www.securityfocus.com/bid/99172

Summary: A flaw exists in OpenBSD’s implementation of the stack guard page that allows attackers to bypass it resulting in arbitrary code execution using setuid binaries such as /usr/bin/at. This affects OpenBSD 6.1 and possibly earlier versions.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.