Russian Vulnerability Scanner Database

Back to List

CVE-2012-2123

Scores

EPSS

0.001very_low0.1%
0%20%40%60%80%100%

Percentile: 0.1%

CVSS

1.9low2.0
0246810

CVSS Score: 1.9/10

All CVSS Scores

CVSS 2.0
1.9

Vector: AV:L/AC:M/Au:N/C:N/I:P/A:N

Description

The cap_bprm_set_creds function in security/commoncap.c in the Linux kernel before 3.3.3 does not properly handle the use of file system capabilities (aka fcaps) for implementing a privileged executable file, which allows local users to bypass intended personality restrictions via a crafted application, as demonstrated by an attack that uses a parent process to disable ASLR.

Scaner-VS 7 — a modern vulnerability management solution

Uses this database for vulnerability detection. High-speed search, cross-platform, advanced configuration audit, and flexible filtering. Suitable for organizations of any size.
Learn more about Scaner-VS 7

Sources

debiannvdredhatubuntu

CWEs

CWE-264

Related Vulnerabilities

BDU:2015-01796

Exploits

Exploit ID: 24459

Source: exploitdb

URL: https://www.exploit-db.com/exploits/24459

Exploit ID: 25444

Source: exploitdb

URL: https://www.exploit-db.com/exploits/25444

Exploit ID: 26131

Source: exploitdb

URL: https://www.exploit-db.com/exploits/26131

Exploit ID: 33589

Source: exploitdb

URL: https://www.exploit-db.com/exploits/33589

Exploit ID: 38465

Source: exploitdb

URL: https://www.exploit-db.com/exploits/38465

Exploit ID: CVE-2013-2094

Source: github-poc

URL: https://github.com/letsr00t/CVE-2013-2094

Recommendations

Source: nvd

Before applying this update, make sure all previously-released erratarelevant to your system have been applied.
This update is available via the Red Hat Network. Details on how touse the Red Hat Network to apply this update are available athttps://access.redhat.com/knowledge/articles/11258
To install kernel packages manually, use “rpm -ivh [package]”. Do notuse “rpm -Uvh” as that will remove the running kernel binaries fromyour system. You may use “rpm -e” to remove old kernels afterdetermining that the new kernel functions properly on your system.

URL: http://rhn.redhat.com/errata/RHSA-2012-0743.html

Source: nvd

Before applying this update, make sure all previously-released erratarelevant to your system have been applied.
This update is available via the Red Hat Network. Details on how touse the Red Hat Network to apply this update are available athttps://access.redhat.com/knowledge/articles/11258
To install kernel packages manually, use “rpm -ivh [package]”. Do notuse “rpm -Uvh” as that will remove the running kernel binaries fromyour system. You may use “rpm -e” to remove old kernels afterdetermining that the new kernel functions properly on your system.

URL: http://rhn.redhat.com/errata/RHSA-2012-0670.html

Vulnerable Software (54)

Type: Configuration

Product: kernel

Operating System: rhel 6

Trait: 
{  "fixed": "2.6.32-220.23.1.el6"}

Source: redhat

Type: Configuration

Product: kernel-rt

Operating System: rhel

Trait: 
{  "fixed": "3.0.30-rt50.62.el6rt"}

Source: redhat

Type: Configuration

Product: linux

Operating System: ubuntu hardy 8.04

Trait: 
{  "unaffected": true}

Source: ubuntu

Type: Configuration

Product: linux

Operating System: ubuntu trusty 14.04

Trait: 
{  "unaffected": true}

Source: ubuntu

Type: Configuration

Product: linux

Operating System: ubuntu utopic 14.10

Trait: 
{  "unaffected": true}

Source: ubuntu

Type: Configuration

Product: linux

Operating System: ubuntu vivid 15.04

Trait: 
{  "unaffected": true}

Source: ubuntu

Type: Configuration

Product: linux

Operating System: ubuntu wily 15.10

Trait: 
{  "unaffected": true}

Source: ubuntu

Type: Configuration

Product: linux

Operating System: ubuntu xenial 16.04

Trait: 
{  "unaffected": true}

Source: ubuntu

Type: Configuration

Product: linux

Operating System: ubuntu yakkety 16.10

Trait: 
{  "unaffected": true}

Source: ubuntu

Type: Configuration

Product: linux

Operating System: ubuntu zesty 17.04

Trait: 
{  "unaffected": true}

Source: ubuntu

Type: Configuration

Product: linux-2.6

Operating System: debian

Trait: 
{  "fixed": "3.2.16-1"}

Source: debian

Type: Configuration

Product: linux-aws

Operating System: ubuntu trusty 14.04

Trait: 
{  "unaffected": true}

Source: ubuntu

Type: Configuration

Product: linux-aws

Operating System: ubuntu xenial 16.04

Trait: 
{  "unaffected": true}

Source: ubuntu

Type: Configuration

Product: linux-flo

Operating System: ubuntu trusty 14.04

Trait: 
{  "unaffected": true}

Source: ubuntu

Type: Configuration

Product: linux-flo

Operating System: ubuntu utopic 14.10

Trait: 
{  "unaffected": true}

Source: ubuntu

Type: Configuration

Product: linux-flo

Operating System: ubuntu vivid 15.04

Trait: 
{  "unaffected": true}

Source: ubuntu

Type: Configuration

Product: linux-flo

Operating System: ubuntu wily 15.10

Trait: 
{  "unaffected": true}

Source: ubuntu

Type: Configuration

Product: linux-flo

Operating System: ubuntu xenial 16.04

Trait: 
{  "unaffected": true}

Source: ubuntu

Type: Configuration

Product: linux-flo

Operating System: ubuntu yakkety 16.10

Trait: 
{  "unaffected": true}

Source: ubuntu

Type: Configuration

Product: linux-gke

Operating System: ubuntu xenial 16.04

Trait: 
{  "unaffected": true}

Source: ubuntu