CVE 2017 6074 - AtaraxiaCoLtd/vlun_report Wiki

Vulnerability Report for CVE-2017-6074

Overview

The dccp_rcv_state_process function in net/dccp/input.c in the Linux kernel through 4.9.11 mishandles DCCP_PKT_REQUEST packet data structures in the LISTEN state, which allows local users to obtain root privileges or cause a denial of service (double free) via an application that makes an IPV6_RECVPKTINFO setsockopt system call.

CVSS3

KEY VALUE
CVSS v3 Base Score 7.8 High
Vector CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Impact Score 5.9
Exploitability Score 1.8
Attack Vector (AV) Local
Attack Complexity (AC) Low
Privileges Required (PR) Low
User Interaction (UI) None
Scope (S) Unchanged
Confidentiality (C) High
Integrity (I) High
Availability (A) High

CVSS2

KEY VALUE
CVSS v2 Base Score 7.2 HIGH
Vector (AV:L/AC:L/Au:N/C:C/I:C/A:C) ( legend )
Impact Subscore 10.0
Exploitability Subscore 3.9
Access Vector Locally exploitable
Access Complexity Low
Authentication Not required to exploit
Impact Type Allows unauthorized disclosure of information; Allows unauthorized modification; Allows disruption of service

Vulnerable software and versions

Reffernces

Exploit