← back
CVE-2015-0235

CVE-2015-0235

EPSS 94.9%
Vexday Risk Score
60Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
CVSS EPSS 94.9%KEV nãoPoC públicaNuclei Metasploit simPatch referenciado
Lifecycle
27 Jan 2015Metasploit module available
27 Jan 2015Public PoC
28 Jan 2015Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and other 2.x versions before 2.18, allows context-dependent attackers to execute arbitrary code via vectors related to the (1) gethostbyname or (2) gethostbyname2 function, aka "GHOST."
Affected products
n/a · n/a
public PoCs found24
githubgithub.com/aaronfay/CVE-2015-0235-test15githubgithub.com/makelinux/CVE-2015-0235-workaround6githubgithub.com/fser/ghost-checker6githubgithub.com/arm13/ghost_exploit4githubgithub.com/mikesplain/CVE-2015-0235-cookbook3githubgithub.com/nickanderson/cfengine-CVE_2015_02351githubgithub.com/furyutei/CVE-2015-0235_GHOST1githubgithub.com/adherzog/ansible-CVE-2015-0235-GHOST1githubgithub.com/koudaiii-archives/cookbook-update-glibc0githubgithub.com/F88/ghostbusters150githubgithub.com/1and1-serversupport/ghosttester0githubgithub.com/alanmeyer/CVE-glibc0githubgithub.com/sUbc0ol/CVE-2015-02350githubgithub.com/chayim/GHOSTCHECK-cve-2015-02350githubgithub.com/tobyzxj/CVE-2015-02350githubgithub.com/favoretti/lenny-libc60exploitdbwww.exploit-db.com/exploits/36421unverifiedcve_referencepacketstormsecurity.com/files/130768/EMC-Secure-Remote-Services-GHOST-SQL-Injection-Command-Injection.htmlunverifiedcve_referencepacketstormsecurity.com/files/130974/Exim-GHOST-glibc-gethostbyname-Buffer-Overflow.htmlunverifiedcve_referencepacketstormsecurity.com/files/153278/WAGO-852-Industrial-Managed-Switch-Series-Code-Execution-Hardcoded-Credentials.htmlunverifiedcve_referencepacketstormsecurity.com/files/164014/Moxa-Command-Injection-Cross-Site-Scripting-Vulnerable-Software.htmlunverifiedcve_referencepacketstormsecurity.com/files/167552/Nexans-FTTO-GigaSwitch-Outdated-Components-Hardcoded-Backdoor.htmlunverifiedexploitdbwww.exploit-db.com/exploits/35951unverifiedcve_referencepacketstormsecurity.com/files/130171/Exim-ESMTP-GHOST-Denial-Of-Service.htmlunverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://blogs.sophos.com/2015/01/29/sophos-products-and-the-ghost-vulnerability-affecting-linux/http://linux.oracle.com/errata/ELSA-2015-0090.htmlhttp://linux.oracle.com/errata/ELSA-2015-0092.htmlhttp://lists.apple.com/archives/security-announce/2015/Jun/msg00002.htmlhttp://lists.apple.com/archives/security-announce/2015/Oct/msg00005.htmlhttp://lists.apple.com/archives/security-announce/2015/Sep/msg00008.htmlhttp://marc.info/?l=bugtraq&m=142296726407499&w=2http://marc.info/?l=bugtraq&m=142721102728110&w=2http://marc.info/?l=bugtraq&m=142722450701342&w=2http://marc.info/?l=bugtraq&m=142781412222323&w=2http://marc.info/?l=bugtraq&m=143145428124857&w=2http://packetstormsecurity.com/files/130171/Exim-ESMTP-GHOST-Denial-Of-Service.html