CVE-2012-0056
Linux Kernel 2.6.39 < 3.2.2 (x86/x64) - 'Mempodipper' Local Privilege Escalation
Severity Score
6.9
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
4
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The mem_write function in the Linux kernel before 3.2.2, when ASLR is disabled, does not properly check permissions when writing to /proc/<pid>/mem, which allows local users to gain privileges by modifying process memory, as demonstrated by Mempodipper.
La función mem_write en el kernel de Linux anterior a versión 3.2.2, cuando ASLR está deshabilitado, no comprueba apropiadamente los permisos al escribir en /proc/(pid)/mem, lo que permite a los usuarios locales alcanzar privilegios al modificar la memoria del proceso, como es demostrado por Mempodipper .
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2011-12-07 CVE Reserved
- 2012-01-12 First Exploit
- 2012-01-23 CVE Published
- 2023-07-28 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-264: Permissions, Privileges, and Access Controls
- CWE-863: Incorrect Authorization
CAPEC
References (19)
| URL | Tag | Source |
|---|---|---|
| http://blog.zx2c4.com/749 | Third Party Advisory | |
| http://secunia.com/advisories/47708 | Broken Link | |
| http://www.kb.cert.org/vuls/id/470151 | Third Party Advisory |
|
| http://www.openwall.com/lists/oss-security/2012/01/18/1 | Mailing List |
|
| http://www.openwall.com/lists/oss-security/2012/01/18/2 | Mailing List |
|
| http://www.openwall.com/lists/oss-security/2012/01/19/4 | Mailing List |
|
| http://www.openwall.com/lists/oss-security/2012/01/22/4 | Mailing List |
|
| http://www.securityfocus.com/bid/51625 | Third Party Advisory |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/35161 | 2012-01-12 | |
| https://www.exploit-db.com/exploits/18411 | 2012-01-23 | |
| https://github.com/pythonone/CVE-2012-0056 | 2016-05-03 | |
| https://github.com/srclib/CVE-2012-0056 | 2012-12-29 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | >= 2.6.39 < 3.0.18 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.39 < 3.0.18" | - |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | >= 3.1 < 3.2.2 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.1 < 3.2.2" | - |
Affected
| ||||||