CVE-2017-1000253

KEV
Published: Ott 05, 2017 Last Modified: Ott 22, 2025
ExploitDB:
Other exploit source:
Google Dorks:
HIGH 7,8
Source: [email protected]
Attack Vector: local
Attack Complexity: low
Privileges Required: low
User Interaction: none
Scope: unchanged
Confidentiality: high
Integrity: high
Availability: high
HIGH 7,2
Source: [email protected]
Access Vector: local
Access Complexity: low
Authentication: none
Confidentiality: complete
Integrity: complete
Availability: complete

Description

AI Translation Available

Linux distributions that have not patched their long-term kernels with https://git.kernel.org/linus/a87938b2e246b81b4fb713edb371a9fa3c5c3c86 (committed on April 14, 2015). This kernel vulnerability was fixed in April 2015 by commit a87938b2e246b81b4fb713edb371a9fa3c5c3c86 (backported to Linux 3.10.77 in May 2015), but it was not recognized as a security threat. With CONFIG_ARCH_BINFMT_ELF_RANDOMIZE_PIE enabled, and a normal top-down address allocation strategy, load_elf_binary() will attempt to map a PIE binary into an address range immediately below mm->mmap_base. Unfortunately, load_elf_ binary() does not take account of the need to allocate sufficient space for the entire binary which means that, while the first PT_LOAD segment is mapped below mm->mmap_base, the subsequent PT_LOAD segment(s) end up being mapped above mm->mmap_base into the are that is supposed to be the 'gap' between the stack and the binary.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score
0,5721
Percentile
1,0th
Updated

EPSS Score Trend (Last 91 Days)

119

Improper Restriction of Operations within the Bounds of a Memory Buffer

Stable
Abstraction: Class Structure: Simple
Common Consequences
Security Scopes Affected:
Integrity Confidentiality Availability
Potential Impacts:
Execute Unauthorized Code Or Commands Modify Memory Read Memory Dos: Crash, Exit, Or Restart Dos: Resource Consumption (Cpu) Dos: Resource Consumption (Memory)
Applicable Platforms
Languages: Assembly, C, C++, Memory-Unsafe
Likelihood of Exploit: High
View CWE Details
Exploit

Linux Kernel 3.10.0-514.21.2.el7.x86_64 / 3.10.0-514.26.1.el7.x86_64 (CentOS 7) - …

Linux Kernel 3.10.0-514.21.2.el7.x86_64 / 3.10.0-514.26.1.el7.x86_64 (CentOS 7) - SUID Position Independent Executable 'PIE' Local Privilege Escalation

Author: Qualys Corporation Published:
View Exploit Code →
Operating System

Linux Kernel by Linux

Product Information
Vendor Linux
Product Linux Kernel
Version Range Affected
From 3.17 (inclusive)
To 3.18.14 (exclusive)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux
Version 7.0
cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux
Version 6.8
cpe:2.3:o:redhat:enterprise_linux:6.8:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Linux Kernel by Linux

Product Information
Vendor Linux
Product Linux Kernel
Version Range Affected
From 3.19 (inclusive)
To 3.19.7 (exclusive)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Centos by Centos

Product Information
Vendor Centos
Product Centos
Version 7.1511
cpe:2.3:o:centos:centos:7.1511:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux
Version 7.1
cpe:2.3:o:redhat:enterprise_linux:7.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Centos by Centos

Product Information
Vendor Centos
Product Centos
Version 7.1406
cpe:2.3:o:centos:centos:7.1406:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux
Version 7.2
cpe:2.3:o:redhat:enterprise_linux:7.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux
Version 6.0
cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Linux Kernel by Linux

Product Information
Vendor Linux
Product Linux Kernel
Version Range Affected
From 3.11 (inclusive)
To 3.12.43 (exclusive)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux
Version 6.9
cpe:2.3:o:redhat:enterprise_linux:6.9:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Centos by Centos

Product Information
Vendor Centos
Product Centos
Version 7.1611
cpe:2.3:o:centos:centos:7.1611:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Centos by Centos

Product Information
Vendor Centos
Product Centos
Version 6.7
cpe:2.3:o:centos:centos:6.7:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Centos by Centos

Product Information
Vendor Centos
Product Centos
Version 6.1
cpe:2.3:o:centos:centos:6.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux
Version 6.6
cpe:2.3:o:redhat:enterprise_linux:6.6:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Centos by Centos

Product Information
Vendor Centos
Product Centos
Version 6.8
cpe:2.3:o:centos:centos:6.8:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux
Version 6.5
cpe:2.3:o:redhat:enterprise_linux:6.5:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Linux Kernel by Linux

Product Information
Vendor Linux
Product Linux Kernel
Version Range Affected
From 2.6.25 (inclusive)
To 3.2.70 (exclusive)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Linux Kernel by Linux

Product Information
Vendor Linux
Product Linux Kernel
Version Range Affected
From 3.3 (inclusive)
To 3.4.109 (exclusive)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux
Version 6.1
cpe:2.3:o:redhat:enterprise_linux:6.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Centos by Centos

Product Information
Vendor Centos
Product Centos
Version 6.4
cpe:2.3:o:centos:centos:6.4:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Linux Kernel by Linux

Product Information
Vendor Linux
Product Linux Kernel
Version Range Affected
From 3.15 (inclusive)
To 3.16.35 (exclusive)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux
Version 6.7
cpe:2.3:o:redhat:enterprise_linux:6.7:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux
Version 6.3
cpe:2.3:o:redhat:enterprise_linux:6.3:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux
Version 6.4
cpe:2.3:o:redhat:enterprise_linux:6.4:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Centos by Centos

Product Information
Vendor Centos
Product Centos
Version 6.9
cpe:2.3:o:centos:centos:6.9:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux
Version 6.2
cpe:2.3:o:redhat:enterprise_linux:6.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Linux Kernel by Linux

Product Information
Vendor Linux
Product Linux Kernel
Version Range Affected
From 4.0 (inclusive)
To 4.0.2 (exclusive)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Centos by Centos

Product Information
Vendor Centos
Product Centos
Version 7.1503
cpe:2.3:o:centos:centos:7.1503:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux
Version 7.3
cpe:2.3:o:redhat:enterprise_linux:7.3:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Centos by Centos

Product Information
Vendor Centos
Product Centos
Version 6.5
cpe:2.3:o:centos:centos:6.5:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Centos by Centos

Product Information
Vendor Centos
Product Centos
Version 6.2
cpe:2.3:o:centos:centos:6.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Linux Kernel by Linux

Product Information
Vendor Linux
Product Linux Kernel
Version Range Affected
From 3.13 (inclusive)
To 3.14.41 (exclusive)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Centos by Centos

Product Information
Vendor Centos
Product Centos
Version 6.0
cpe:2.3:o:centos:centos:6.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Linux Kernel by Linux

Product Information
Vendor Linux
Product Linux Kernel
Version Range Affected
From 3.5 (inclusive)
To 3.10.77 (exclusive)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Centos by Centos

Product Information
Vendor Centos
Product Centos
Version 6.3
cpe:2.3:o:centos:centos:6.3:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Centos by Centos

Product Information
Vendor Centos
Product Centos
Version 6.6
cpe:2.3:o:centos:centos:6.6:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://www.cisa.gov/known-exploited-vulnerabilities-catalo…
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2017…
https://access.redhat.com/errata/RHSA-2017:2793
https://access.redhat.com/errata/RHSA-2017:2793
https://access.redhat.com/errata/RHSA-2017:2794
https://access.redhat.com/errata/RHSA-2017:2794
https://access.redhat.com/errata/RHSA-2017:2795
https://access.redhat.com/errata/RHSA-2017:2795
https://access.redhat.com/errata/RHSA-2017:2796
https://access.redhat.com/errata/RHSA-2017:2796
https://access.redhat.com/errata/RHSA-2017:2797
https://access.redhat.com/errata/RHSA-2017:2797
https://access.redhat.com/errata/RHSA-2017:2798
https://access.redhat.com/errata/RHSA-2017:2798
https://access.redhat.com/errata/RHSA-2017:2799
https://access.redhat.com/errata/RHSA-2017:2799
https://access.redhat.com/errata/RHSA-2017:2800
https://access.redhat.com/errata/RHSA-2017:2800
https://access.redhat.com/errata/RHSA-2017:2801
https://access.redhat.com/errata/RHSA-2017:2801
https://access.redhat.com/errata/RHSA-2017:2802
https://access.redhat.com/errata/RHSA-2017:2802
https://www.qualys.com/2017/09/26/cve-2017-1000253/cve-2017…
https://www.qualys.com/2017/09/26/cve-2017-1000253/cve-2017-1000253.txt
http://www.securityfocus.com/bid/101010
http://www.securityfocus.com/bid/101010
http://www.securitytracker.com/id/1039434
http://www.securitytracker.com/id/1039434
https://access.redhat.com/errata/RHSA-2017:2793
https://access.redhat.com/errata/RHSA-2017:2793
https://access.redhat.com/errata/RHSA-2017:2794
https://access.redhat.com/errata/RHSA-2017:2794
https://access.redhat.com/errata/RHSA-2017:2795
https://access.redhat.com/errata/RHSA-2017:2795
https://access.redhat.com/errata/RHSA-2017:2796
https://access.redhat.com/errata/RHSA-2017:2796
https://access.redhat.com/errata/RHSA-2017:2797
https://access.redhat.com/errata/RHSA-2017:2797
https://access.redhat.com/errata/RHSA-2017:2798
https://access.redhat.com/errata/RHSA-2017:2798
https://access.redhat.com/errata/RHSA-2017:2799
https://access.redhat.com/errata/RHSA-2017:2799
https://access.redhat.com/errata/RHSA-2017:2800
https://access.redhat.com/errata/RHSA-2017:2800
https://access.redhat.com/errata/RHSA-2017:2801
https://access.redhat.com/errata/RHSA-2017:2801
https://access.redhat.com/errata/RHSA-2017:2802
https://access.redhat.com/errata/RHSA-2017:2802
https://www.qualys.com/2017/09/26/cve-2017-1000253/cve-2017…
https://www.qualys.com/2017/09/26/cve-2017-1000253/cve-2017-1000253.txt
http://www.securityfocus.com/bid/101010
http://www.securityfocus.com/bid/101010
http://www.securitytracker.com/id/1039434
http://www.securitytracker.com/id/1039434