Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.9
CVSSv2

CVE-2015-1862

Published: 09/02/2018 Updated: 08/03/2018
CVSS v2 Base Score: 6.9 | Impact Score: 10 | Exploitability Score: 3.4
CVSS v3 Base Score: 7 | Impact Score: 5.9 | Exploitability Score: 1
VMScore: 700
Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Abrt

Vulnerability Summary

The crash reporting feature in Abrt allows local users to gain privileges by leveraging an execve by root after a chroot into a user-specified directory in a namedspaced environment.

Vulnerable Product Search on Vulmon Subscribe to Product

abrt project abrt

Vendor Advisories

Red Hat: CVE-2015-1862
A flaw was found in the way certain ABRT core handlers processed crash reports in a namespaced environment A local, unprivileged user could use this flaw to escalate their privileges on the system ...

Exploits

Exploit DB: Apport/Abrt (Ubuntu / Fedora) - Local Privilege Escalation
#define _GNU_SOURCE #include <stdioh> #include <unistdh> #include <stdlibh> #include <fcntlh> #include <signalh> #include <elfh> #include <errh> #include <syslogh> #include <schedh> #include <linux/schedh> #include <sys/typesh> #include <sys/stath> #include <sys/ ...
Exploit DB: Abrt (Fedora 21) - Race Condition
#include <stdlibh> #include <unistdh> #include <stdboolh> #include <stdioh> #include <signalh> #include <errh> #include <stringh> #include <allocah> #include <limitsh> #include <sys/inotifyh> #include <sys/prctlh> #include <sys/typesh> #include <sys/typesh> # ...
Exploit DB: Linux Apport/Abrt Local Root Exploit
Linux Apport/Abrt local root exploit ...
Exploit DB: Fedora abrt Race Condition
Fedora abrt race condition exploit It should be noted that it can take a few minutes to win the race condition ...
Exploit DB: ABRT raceabrt Privilege Escalation
This Metasploit module attempts to gain root privileges on Fedora systems with a vulnerable version of Automatic Bug Reporting Tool (ABRT) configured as the crash handler A race condition allows local users to change ownership of arbitrary files (CVE-2015-3315) This Metasploit module uses a symlink attack on '/var/tmp/abrt/*/maps' to change the o ...
Exploit DB: Abrt / Apport Race Condition / Symlink
Various security issues relating to symlink attacks and race conditions with Abrt and Apport are documented here ...

References

CWE-362https://www.exploit-db.com/exploits/36747/https://www.exploit-db.com/exploits/36746/https://github.com/abrt/abrt/pull/810https://bugzilla.redhat.com/show_bug.cgi?id=1211223http://www.securityfocus.com/bid/74263http://www.openwall.com/lists/oss-security/2015/04/14/4http://seclists.org/fulldisclosure/2015/Apr/34http://packetstormsecurity.com/files/131429/Abrt-Apport-Race-Condition-Symlink.htmlhttp://packetstormsecurity.com/files/131423/Linux-Apport-Abrt-Local-Root-Exploit.htmlhttp://packetstormsecurity.com/files/131422/Fedora-abrt-Race-Condition.htmlhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/36746/https://access.redhat.com/security/cve/cve-2015-1862
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977IMAPlocal usersCVE-2024-32038CVE-2023-49963CVE-2023-22869CVE-2024-31497localCVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook