Main Vulnerability Database Exploits ID:9917 - Exploit for Permissions, Privileges, and Access Controls in Linux kernel - CVE-2007-4573

ID:9917 - Exploit for Permissions, Privileges, and Access Controls in Linux kernel - CVE-2007-4573

Published: June 5, 2024

Vulnerability identifier: #VU91073

Vulnerability risk: Low

CVE-ID: CVE-2007-4573

CWE-ID: CWE-264

Exploitation vector: Local access

Vulnerable software:
Linux kernel

Link to public exploit:

https://www.exploit-db.com/exploits/30604/

Vulnerability description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to the IA32 system call emulation functionality in Linux kernel, when running on the x86_64 architecture, does not zero extend the eax register after the 32bit entry path to ptrace is used. A local user can use the %RAX register to escalate privileges on the system.

Remediation

Install updates from vendor's website.

ID:9917 - Exploit for Permissions, Privileges, and Access Controls in Linux kernel - CVE-2007-4573

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human