Main Vulnerability Database Exploits ID:4372 - Exploit for Configuration in Linux kernel - CVE-2012-0957

ID:4372 - Exploit for Configuration in Linux kernel - CVE-2012-0957

Published: August 11, 2020

Vulnerability identifier: #VU43239

Vulnerability risk: Medium

CVE-ID: CVE-2012-0957

CWE-ID: CWE-16

Exploitation vector: Remote access

Vulnerable software:
Linux kernel

Link to public exploit:

https://www.exploit-db.com/exploits/37937/

Vulnerability description

The vulnerability allows a remote non-authenticated attacker to gain access to sensitive information.

The override_release function in kernel/sys.c in the Linux kernel before 3.4.16 allows local users to obtain sensitive information from kernel stack memory via a uname system call in conjunction with a UNAME26 personality.

Remediation

Install update from vendor's website.

ID:4372 - Exploit for Configuration in Linux kernel - CVE-2012-0957

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human