Main Vulnerability Database Exploits ID:6384 - Exploit for Memory corruption in Glibc - CVE-2017-1000366

ID:6384 - Exploit for Memory corruption in Glibc - CVE-2017-1000366

Published: June 17, 2021

Vulnerability identifier: #VU7135

Vulnerability risk: Medium

CVE-ID: CVE-2017-1000366

CWE-ID: CWE-119

Exploitation vector: Local access

Vulnerable software:
Glibc

Link to public exploit:

https://www.exploit-db.com/exploits/43331/

Vulnerability description

The vulnerability allows a local attacker to gain elevated privileges on the target system.

The vulnerability exists due to memory management errors in implementation of various functions under multiple operating systems. A local or remote attacker can trigger the affected application to process specially crafted LD_LIBRARY_PATH values to manipulate the heap/stack, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

Remediation

Install update from vendor's website.

ID:6384 - Exploit for Memory corruption in Glibc - CVE-2017-1000366

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human