Main Vulnerability Database Exploits ID:10151 - Exploit for Buffer overflow in Linux kernel - CVE-2007-4571

ID:10151 - Exploit for Buffer overflow in Linux kernel - CVE-2007-4571

Published: July 3, 2024

Vulnerability identifier: #VU93726

Vulnerability risk: Low

CVE-ID: CVE-2007-4571

CWE-ID: CWE-119

Exploitation vector: Local access

Vulnerable software:
Linux kernel

Link to public exploit:

https://www.exploit-db.com/exploits/30605/

Vulnerability description

The vulnerability allows a local user to gain access to sensitive information.

The snd_mem_proc_read function in sound/core/memalloc.c in the Advanced Linux Sound Architecture (ALSA) in the Linux kernel before 2.6.22.8 does not return the correct write size, which allows local users to obtain sensitive information (kernel memory contents) via a small count argument, as demonstrated by multiple reads of /proc/driver/snd-page-alloc.

Remediation

Install update from vendor's website.

ID:10151 - Exploit for Buffer overflow in Linux kernel - CVE-2007-4571

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human