Main Vulnerability Database Exploits ID:1411 - Exploit for Resource exhaustion in Linux kernel - CVE-2017-7472

ID:1411 - Exploit for Resource exhaustion in Linux kernel - CVE-2017-7472

Published: March 18, 2020

Vulnerability identifier: #VU12299

Vulnerability risk: Low

CVE-ID: CVE-2017-7472

CWE-ID: CWE-400

Exploitation vector: Local access

Vulnerable software:
Linux kernel

Link to public exploit:

https://www.exploit-db.com/exploits/42136/

Vulnerability description

The vulnerability allows a local attacker to cause DoD condition on the target system.

The weakness exists in the KEYS subsystem due to memory consumption. A local attacker can cause the service to crash via a series of KEY_REQKEY_DEFL_THREAD_KEYRING keyctl_set_reqkey_keyring calls.

Remediation

Update to version 4.10.13.

ID:1411 - Exploit for Resource exhaustion in Linux kernel - CVE-2017-7472

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human