Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.1
CVSSv2

CVE-2013-4788

Published: 04/10/2013 Updated: 01/07/2017
CVSS v2 Base Score: 5.1 | Impact Score: 6.4 | Exploitability Score: 4.9
VMScore: 515
Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P
Subscribe to Glibc

Vulnerability Summary

The PTR_MANGLE implementation in the GNU C Library (aka glibc or libc6) 2.4, 2.17, and previous versions, and Embedded GLIBC (EGLIBC) does not initialize the random value for the pointer guard, which makes it easier for context-dependent malicious users to control execution flow by leveraging a buffer-overflow vulnerability in an application and using the known zero value pointer guard to calculate a pointer address.

Vulnerable Product Search on Vulmon Subscribe to Product

gnu glibc

gnu glibc 2.11.3

gnu glibc 2.11.2

gnu glibc 2.1.1.6

gnu glibc 2.1.1

gnu glibc 2.0.1

gnu glibc 2.0

gnu glibc 2.14.1

gnu glibc 2.14

gnu glibc 2.10.1

gnu glibc 2.1.9

gnu glibc 2.0.5

gnu glibc 2.0.4

gnu glibc 2.13

gnu glibc 2.12.2

gnu glibc 2.12.1

gnu glibc 2.1.3

gnu glibc 2.1.2

gnu glibc 2.0.3

gnu glibc 2.0.2

gnu glibc 2.16

gnu glibc 2.15

gnu glibc 2.11.1

gnu glibc 2.11

gnu glibc 2.1

gnu glibc 2.0.6

gnu glibc 2.4

gnu eglibc

Vendor Advisories

Debian CVElist Bug Report Logs: eglibc: CVE-2012-4412: strcoll integer / buffer overflow
Debian Bug report logs - #687530 eglibc: CVE-2012-4412: strcoll integer / buffer overflow Package: eglibc; Maintainer for eglibc is (unknown); Reported by: Moritz Muehlenhoff <jmm@inutilorg> Date: Thu, 13 Sep 2012 14:21:01 UTC Severity: important Tags: patch, security Found in versions eglibc/2113-4, eglibc/217-93 Fix ...
Debian CVElist Bug Report Logs: eglibc: CVE-2012-4424: stack overflow in strcoll()
Debian Bug report logs - #689423 eglibc: CVE-2012-4424: stack overflow in strcoll() Package: eglibc; Maintainer for eglibc is (unknown); Reported by: Moritz Muehlenhoff <jmm@inutilorg> Date: Tue, 2 Oct 2012 13:12:01 UTC Severity: important Tags: patch, security Found in versions eglibc/2113-4, eglibc/217-93 Fixed in ...
Debian CVElist Bug Report Logs: CVE-2013-4788: PTR_MANGLE ineffective for statically linked binaries
Debian Bug report logs - #717178 CVE-2013-4788: PTR_MANGLE ineffective for statically linked binaries Package: eglibc; Maintainer for eglibc is (unknown); Reported by: Moritz Muehlenhoff <jmm@inutilorg> Date: Wed, 17 Jul 2013 14:24:01 UTC Severity: important Tags: security Found in versions eglibc/2113-4, eglibc/217-9 ...
Debian CVElist Bug Report Logs: eglibc: CVE-2013-4332
Debian Bug report logs - #722536 eglibc: CVE-2013-4332 Package: eglibc; Maintainer for eglibc is (unknown); Reported by: Moritz Muehlenhoff <jmm@inutilorg> Date: Thu, 12 Sep 2013 05:27:02 UTC Severity: grave Tags: patch, security Fixed in versions eglibc/217-93, eglibc/213-38+deb7u1 Done: Aurelien Jarno <aurel32@de ...
Debian CVElist Bug Report Logs: eglibc: CVE-2013-4237
Debian Bug report logs - #719558 eglibc: CVE-2013-4237 Package: eglibc; Maintainer for eglibc is (unknown); Reported by: Moritz Muehlenhoff <jmm@inutilorg> Date: Tue, 13 Aug 2013 05:15:02 UTC Severity: important Tags: security Found in versions eglibc/2113-4, eglibc/217-93 Fixed in versions eglibc/217-94, eglibc/213 ...
Debian CVElist Bug Report Logs: eglibc: CVE-2013-4458: Stack (frame) overflow in getaddrinfo() when called with AF_INET6
Debian Bug report logs - #727181 eglibc: CVE-2013-4458: Stack (frame) overflow in getaddrinfo() when called with AF_INET6 Package: eglibc; Maintainer for eglibc is (unknown); Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Wed, 23 Oct 2013 04:54:01 UTC Severity: important Tags: security, upstream Fixed in vers ...
Red Hat: CVE-2013-4788
The PTR_MANGLE implementation in the GNU C Library (aka glibc or libc6) 24, 217, and earlier, and Embedded GLIBC (EGLIBC) does not initialize the random value for the pointer guard, which makes it easier for context-dependent attackers to control execution flow by leveraging a buffer-overflow vulnerability in an application and using the known ze ...

Exploits

Exploit DB: glibc and eglibc 2.5/2.7/2.13 - Local Buffer Overflow
/* * * Exploit-DB Note: Reportedly does not work See output at the bottom of the entry * * $FILE: bug-manglec * * Comment: Proof of concept * * $VERSION$ * * Author: Hector Marco <hecmargi@upves> * Ismael Ripoll <iripoll@discaupves> * * $LICENSE: * This program is free software; you can redistribute it and ...

References

CWE-20http://hmarco.org/bugs/CVE-2013-4788.htmlhttp://www.openwall.com/lists/oss-security/2013/07/15/9http://www.mandriva.com/security/advisories?name=MDVSA-2013:283http://www.mandriva.com/security/advisories?name=MDVSA-2013:284http://seclists.org/fulldisclosure/2015/Sep/23http://www.securityfocus.com/bid/61183https://security.gentoo.org/glsa/201503-04https://nvd.nist.govhttps://www.exploit-db.com/exploits/28657/https://access.redhat.com/security/cve/cve-2013-4788https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=687530
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040privilege escalationCVE-2024-4112CVE-2024-32872man-in-the-middleCVE-2024-32788bypassCVE-2024-3400CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook