Exploit for #VU27 Memory corruption in Oracle Linux and Oracle VM Server for x86

Exploit for #VU27 Memory corruption in Oracle Linux and Oracle VM Server for x86

Published: 2020-03-18

Vulnerability identifier: #VU27

Vulnerability risk: High

CVSSv3.1: 8.2 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:F/RL:O/RC:C]

CVE-ID: CVE-2016-4997

CWE-ID: CWE-119

Exploitation vector: Local

Exploits in database: 3

March 18, 2020
- Linux Kernel 4.6.2 (Ubuntu 16.04.1) - 'IP6T_SO_SET_REPLACE' Privilege Escalation [Exploit-DB]
- Linux Kernel 4.6.3 (x86) - 'Netfilter' Privilege Escalation (Metasploit) [Exploit-DB]
- Linux Kernel 4.6.3 Netfilter Privilege Escalation [Metasploit]

Impact: Code execution

Vulnerable software:
Oracle Linux
Operating systems & Components / Operating system
Oracle VM Server for x86
Server applications / Other server solutions

Vendor: Oracle