Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact
6.7
CVSSv3

CVE-2017-6516

Published: 14/03/2017 Updated: 03/10/2019
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
CVSS v3 Base Score: 6.7 | Impact Score: 5.9 | Exploitability Score: 0.8
VMScore: 725
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

A Local Privilege Escalation Vulnerability in MagniComp's Sysinfo prior to 10-H64 for Linux and UNIX platforms could allow a local malicious user to gain elevated privileges. Parts of SysInfo require setuid-to-root access in order to access restricted system files and make restricted kernel calls. This access could be exploited by a local malicious user to gain a root shell prompt using the right combination of environment variables and command line arguments.

Vulnerable Product Search on Vulmon Subscribe to Product

magnicomp sysinfo

Exploits

Exploit DB: MagniComp SysInfo - mcsiwrapper Privilege Escalation (Metasploit)
## # This module requires Metasploit: metasploitcom/download # Current source: githubcom/rapid7/metasploit-framework ## class MetasploitModule < Msf::Exploit::Local Rank = ExcellentRanking include Msf::Post::File include Msf::Exploit::EXE include Msf::Exploit::FileDropper def initialize(info = {}) super(update_ ...
Exploit DB: MagniComp SysInfo mcsiwrapper Privilege Escalation
This Metasploit module attempts to gain root privileges on systems running MagniComp SysInfo versions prior to 10-H64 The mcsiwrapper suid executable allows loading a config file using the '--configfile' argument The 'ExecPath' config directive is used to set the executable load path This Metasploit module abuses this functionality to set the l ...
Exploit DB: MagniComp SysInfo Information Exposure
MagniComp SysInfo contains a information exposure vulnerability through debug functionality Versions SysInfo 10-H81 and above are not affected ...

Mailing Lists

Full Disclosure: MagniComp SysInfo Information Exposure [CVE-2018-7268]
MagniComp SysInfo Information Exposure [CVE-2018-7268] ====================================================== The latest version of this advisory is available at: sintonenfi/advisories/magnicomp-sysinfo-information-exposuretxt Overview -------- MagniComp SysInfo contains a information exposure vulnerability through debug functionality ...

Github Repositories

https://github.com/Rubytox/CVE-2017-6516-mcsiwrapper-

A PoC / methodology to exploit CVE-2017-6516

CVE-2017-6516 CVE-2017-6516 is a privilege escalation vulnerability that targets the mcsiwrapper binary from MagniCorp SysInfo under version 10-H64 When this binary has the SUID bit set and is outdated, a user may execute arbitrary code as the owner of the binary - which is often root Requirements The binary mcsiwrapper must be setuid: $ ls -l mcsiwrapper -rwsr-xr-x 1 ro

References

CWE-20http://www.magnicomp.com/support/cve/CVE-2017-6516.shtmlhttp://www.securityfocus.com/bid/96934https://labs.mwrinfosecurity.com/advisories/multiple-vulnerabilities-in-magnicomps-sysinfo-root-setuid/https://labs.mwrinfosecurity.com/advisories/magnicomps-sysinfo-root-setuid-local-privilege-escalation-vulnerability/https://www.exploit-db.com/exploits/44150/https://nvd.nist.govhttps://github.com/Rubytox/CVE-2017-6516-mcsiwrapper-http://seclists.org/fulldisclosure/2018/Jun/44https://www.exploit-db.com/exploits/44150/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692CVE-2012-1823memory leakCVE-2024-0627CVE-2024-31402privilege escalationCVE-2024-36418remote code executionCVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook