CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2017-1000375

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0380%
EPSS Percentile43.28th
Published2017年6月19日
Last Modified2026年5月13日

Vulnerability Description

NetBSD maps the run-time link-editor ld.so directly below the stack region, even if ASLR is enabled, this allows attackers to more easily manipulate memory leading to arbitrary code execution. This affects NetBSD 7.1 and possibly earlier versions.

Affected Platforms (CPE)

💻
Netbsd

Netbsd

<= 7.1

References & Advisories

🔗 http://www.securityfocus.com/bid/99257
🔗 https://www.exploit-db.com/exploits/42272/
🔗 https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt
🔗 http://www.securityfocus.com/bid/99257
🔗 https://www.exploit-db.com/exploits/42272/
🔗 https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt

相關漏洞威脅

CVE-2006-430410.0

Buffer overflow in the sppp driver in FreeBSD 4.11 through 6.1, NetBSD 2.0 through 4.0 beta before 20060823, and OpenBSD 3.8 and 3...

CVE-2000-095210.0

global.cgi CGI program in Global 3.55 and earlier on NetBSD allows remote attackers to execute arbitrary commands via shell metach...

CVE-2017-10003749.8

A flaw exists in NetBSD's implementation of the stack guard page that allows attackers to bypass it resulting in arbitrary code ex...

CVE-2017-10003789.8

The NetBSD qsort() function is recursive, and not randomized, an attacker can construct a pathological input array of N elements t...