Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
3.7
CVSSv2

CVE-2014-0476

Published: 25/10/2014 Updated: 19/09/2017
CVSS v2 Base Score: 3.7 | Impact Score: 6.4 | Exploitability Score: 1.9
VMScore: 380
Vector: AV:L/AC:H/Au:N/C:P/I:P/A:P
Subscribe to Ubuntu Linux

Vulnerability Summary

The slapper function in chkrootkit prior to 0.50 does not properly quote file paths, which allows local users to execute arbitrary code via a Trojan horse executable. NOTE: this is only a vulnerability when /tmp is not mounted with the noexec option.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

canonical ubuntu linux 12.04

canonical ubuntu linux 10.04

canonical ubuntu linux 14.04

canonical ubuntu linux 13.10

chkrootkit chkrootkit

Vendor Advisories

Debian CVElist Bug Report Logs: Chkrootkit 0.49 - Local Privilege Escalation
# OpenVAS Vulnerability Test # $Id: deb_2945nasl 14302 2019-03-19 08:28:48Z cfischer $ # Auto-generated from advisory DSA 2945-1 using nvtgen 10 # Script version: 10 # # Author: # Greenbone Networks # # Copyright: # Copyright (c) 2014 Greenbone Networks GmbH greenbonenet # Text descriptions are largely excerpted from the referenced # adv ...
Ubuntu Security Notice: chkrootkit vulnerability
chkrootkit could be made to run programs as an administrator ...
Amazon Linux AMI: ALAS-2014-370
A quoting issue was found in chkrootkit which would lead to a file in /tmp/ being executed, if /tmp/ was mounted without the noexec option chkrootkit is typically run as the root user A local attacker could use this flaw to escalate their privileges ...

Exploits

Exploit DB: Chkrootkit 0.49 - Local Privilege Escalation
We just found a serious vulnerability in the chkrootkit package, which may allow local attackers to gain root access to a box in certain configurations (/tmp not mounted noexec) The vulnerability is located in the function slapper() in the shellscript chkrootkit: # # SLAPPER{A,B,C,D} and the multi-platform variant # slapper (){ SLAPPER_FILES ...
Exploit DB: Chkrootkit - Local Privilege Escalation (Metasploit)
## # This module requires Metasploit: metasploitcom/download # Current source: githubcom/rapid7/metasploit-framework ## class Metasploit4 < Msf::Exploit::Local # This could also be Excellent, but since it requires # up to one day to pop a shell, let's set it to Manual instead Rank = ManualRanking include Msf::Post::F ...

References

CWE-20http://www.debian.org/security/2014/dsa-2945http://www.openwall.com/lists/oss-security/2014/06/04/9http://www.chkrootkit.org/http://www.ubuntu.com/usn/USN-2230-1https://www.exploit-db.com/exploits/38775/http://osvdb.org/show/osvdb/107710http://packetstormsecurity.com/files/134484/Chkrootkit-Local-Privilege-Escalation.htmlhttps://security.gentoo.org/glsa/201709-05218766ad7b3d8879803mjab0f76b02febhttps://usn.ubuntu.com/2230-1/https://nvd.nist.govhttps://www.exploit-db.com/exploits/33899/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924CVE-2024-3400overflowCVE-2024-23528CVE-2024-21338CVE-2024-3818CVE-2024-23535NULL pointer dereferenceelevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook