CVE-2014-0038
55Vexday Risk Score
Patch soon. It has a working public exploit.
ssvc Attendepss 35%
from disclosure to weapon0 days
Published on NVDFeb 6
1st PoCJan 31
metasploitFeb 2
exploitation probability
35%top 2% of all CVEs
observed exploitation
nono source reports it
9 public exploit(s)
The compat_sys_recvmmsg function in net/compat.c in the Linux kernel before 3.13.2, when CONFIG_X86_X32 is enabled, allows local users to gain privileges via a recvmmsg system call with a crafted timeout pointer parameter.
Affected products
n/a · n/apublic PoCs found — 9
githubgithub.com/saelo/cve-2014-0038★ 199githubgithub.com/kiruthikan99/IT19115276★ 0cve_referencewww.exploit-db.com/exploits/31346unverifiedcve_referencewww.exploit-db.com/exploits/31347unverifiedcve_referencewww.exploit-db.com/exploits/40503/unverifiedexploitdbwww.exploit-db.com/exploits/31305unverifiedexploitdbwww.exploit-db.com/exploits/40503unverifiedexploitdbwww.exploit-db.com/exploits/31346unverifiedexploitdbwww.exploit-db.com/exploits/31347unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
References
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=2def2ef2ae5f3990aabdbe8a755911902707d268http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00002.htmlhttp://lists.opensuse.org/opensuse-security-announce/2014-02/msg00003.htmlhttp://pastebin.com/raw.php?i=DH3Lbg54https://bugzilla.redhat.com/show_bug.cgi?id=1060023https://code.google.com/p/chromium/issues/detail?id=338594http://secunia.com/advisories/56669https://github.com/saelo/cve-2014-0038https://github.com/torvalds/linux/commit/2def2ef2ae5f3990aabdbe8a755911902707d268https://www.exploit-db.com/exploits/40503/http://www.exploit-db.com/exploits/31346http://www.exploit-db.com/exploits/31347