Published: 09/02/2017 Updated: 03/10/2019

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

CVSS v3 Base Score: 8.8 | Impact Score: 6 | Exploitability Score: 2

VMScore: 465

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

Firejail prior to 0.9.44.4 and 0.9.38.x LTS prior to 0.9.38.8 LTS does not consider the .Xauthority case during its attempt to prevent accessing user files with an euid of zero, which allows local users to conduct sandbox-escape attacks via vectors involving a symlink and the --private option.

Vulnerable Product	Search on Vulmon	Subscribe to Product
firejail project firejail

Debian Bug report logs - #850160 firejail: CVE-2017-5180: local root exploit Package: firejail; Maintainer for firejail is Reiner Herrmann <reiner@reiner-hde>; Source for firejail is src:firejail (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <jmm@inutilorg> Date: Wed, 4 Jan 2017 14:09:02 UTC Severity: gra ...

Debian Bug report logs - #850528 firejail: CVE-2017-5207: root shell via --bandwidth and --shell Package: src:firejail; Maintainer for src:firejail is Reiner Herrmann <reiner@reiner-hde>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 7 Jan 2017 13:36:01 UTC Severity: grave Tags: fixed-upstream, p ...

Debian Bug report logs - #850558 firejail: CVE-2017-5206 Package: src:firejail; Maintainer for src:firejail is Reiner Herrmann <reiner@reiner-hde>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 7 Jan 2017 18:18:02 UTC Severity: grave Tags: fixed-upstream, patch, security, upstream Found in versi ...

A race condition vulnerability has been discovered in firejail An attacker that is able to symlink to arbitrary binaries or libraries can trick firejail into running them with EUID 0, resulting in escalation of privilege ...

/* firejail local root exploit (host to host) * * (C) 2017 Sebastian Krahmer under the GPL * * WARNING: This exploit uses ldsopreload technique * If you are in bad luck, you may end up with an unusable system * SO BE WARNED ONLY TEST IT IN YOUR SAFE VM's * * Get the beauty that this is a shared lib and a running * executable at the ...

CWE-862 https://firejail.wordpress.com/download-2/release-notes/http://openwall.com/lists/oss-security/2017/01/04/2 http://www.securityfocus.com/bid/95298 https://security.gentoo.org/glsa/201701-62 https://nvd.nist.gov https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=850160 https://www.exploit-db.com/exploits/43359/https://security.archlinux.org/CVE-2017-5180

CVE-2017-5180

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect