Main Vulnerability Database Exploits ID:4700 - Exploit for Buffer overflow in Linux kernel - CVE-2014-4322

ID:4700 - Exploit for Buffer overflow in Linux kernel - CVE-2014-4322

Published: October 14, 2020

Vulnerability identifier: #VU40991

Vulnerability risk: High

CVE-ID: CVE-2014-4322

CWE-ID: CWE-119

Exploitation vector: Remote access

Vulnerable software:
Linux kernel

Link to public exploit:

https://github.com/laginimaineb/cve-2014-4322

Vulnerability description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

drivers/misc/qseecom.c in the QSEECOM driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not validate certain offset, length, and base values within an ioctl call, which allows attackers to gain privileges or cause a denial of service (memory corruption) via a crafted application.

Remediation

Install update from vendor's website.

ID:4700 - Exploit for Buffer overflow in Linux kernel - CVE-2014-4322

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human