CVE 2017 6074 - AtaraxiaCoLtd/vlun_report GitHub Wiki
Vulnerability Report for CVE-2017-6074
Overview
The dccp_rcv_state_process function in net/dccp/input.c in the Linux kernel through 4.9.11 mishandles DCCP_PKT_REQUEST packet data structures in the LISTEN state, which allows local users to obtain root privileges or cause a denial of service (double free) via an application that makes an IPV6_RECVPKTINFO setsockopt system call.
CVSS3
| KEY |
VALUE |
| CVSS v3 Base Score |
7.8 High |
| Vector |
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
| Impact Score |
5.9 |
| Exploitability Score |
1.8 |
| Attack Vector (AV) |
Local |
| Attack Complexity (AC) |
Low |
| Privileges Required (PR) |
Low |
| User Interaction (UI) |
None |
| Scope (S) |
Unchanged |
| Confidentiality (C) |
High |
| Integrity (I) |
High |
| Availability (A) |
High |
CVSS2
| KEY |
VALUE |
| CVSS v2 Base Score |
7.2 HIGH |
| Vector |
(AV:L/AC:L/Au:N/C:C/I:C/A:C) ( legend ) |
| Impact Subscore |
10.0 |
| Exploitability Subscore |
3.9 |
| Access Vector |
Locally exploitable |
| Access Complexity |
Low |
| Authentication |
Not required to exploit |
| Impact Type |
Allows unauthorized disclosure of information; Allows unauthorized modification; Allows disruption of service |
Vulnerable software and versions
- cpe:/o:linux:linux_kernel:4.9.11 and previous versions
Reffernces
Exploit