CVE-2018-1000001
CVE-2018-1000001
Vexday Risk Score
67High priority
SSVC decision (CISA)
Act
Exploitation + impact → act immediately
Exploit maturity
Functional exploit
Popular PoC on GitHub (31 stars) — exploitation code widely available.
CVSS —EPSS 13.4%KEV nãoPoC públicaNuclei —Metasploit simPatch referenciado
Lifecycle
16 Jan 2018Metasploit module available
16 Jan 2018Public PoC
31 Jan 2018Published on NVD
Recommendation: Patch as soon as possible — active exploitation confirmed.
In glibc 2.26 and earlier there is confusion in the usage of getcwd() by realpath() which can be used to write before the destination buffer leading to a buffer underflow and potential code execution.
Affected products
n/a · n/apublic PoCs found — 11
githubgithub.com/0x00-0x00/CVE-2018-1000001★ 31githubgithub.com/usernameid0/tools-for-CVE-2018-1000001★ 0exploitdbwww.exploit-db.com/exploits/44889unverifiedexploitdbwww.exploit-db.com/exploits/43775unverifiedvulncheckvulncheck.com/xdb/ef732ac75768unverifiedvulncheckvulncheck.com/xdb/79a0160329aaunverifiedvulncheckvulncheck.com/xdb/468c0c6fe03funverifiedvulncheckvulncheck.com/xdb/e9ecb9b40edcunverifiedcve_referencewww.exploit-db.com/exploits/43775/unverifiedvulncheckvulncheck.com/xdb/0b2d0c835d2bunverifiedcve_referencewww.exploit-db.com/exploits/44889/unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
References
https://access.redhat.com/errata/RHSA-2018:0805http://seclists.org/oss-sec/2018/q1/38https://security.netapp.com/advisory/ntap-20190404-0003/https://usn.ubuntu.com/3534-1/https://usn.ubuntu.com/3536-1/https://www.exploit-db.com/exploits/43775/https://www.exploit-db.com/exploits/44889/https://www.halfdog.net/Security/2017/LibcRealpathBufferUnderflow/http://www.securityfocus.com/bid/102525http://www.securitytracker.com/id/1040162