Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.2
CVSSv2

CVE-2017-8422

Published: 17/05/2017 Updated: 03/10/2019
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 725
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Kde

Vulnerability Summary

KDE kdelibs prior to 4.14.32 and KAuth prior to 5.34 allow local users to gain root privileges by spoofing a callerID and leveraging a privileged helper app.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

kde kauth

kde kdelibs

Vendor Advisories

Red Hat: Important: kdelibs security update
Synopsis Important: kdelibs security update Type/Severity Security Advisory: Important Topic An update for kdelibs is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, ...
Ubuntu Security Notice: kde4libs vulnerability
KDE-Libs could be made to run programs as an administrator if it received specially crafted input ...
Red Hat: CVE-2017-8422
A privilege escalation flaw was found in the way kdelibs handled D-Bus messages A local user could potentially use this flaw to gain root privileges by spoofing a callerID and leveraging a privileged helper application ...
Arch Linux Issues:
KAuth <= 5330 contains a logic flaw in which the service invoking dbus is not properly checked This allows spoofing the identity of the caller and with some carefully crafted calls can lead to gaining root from an unprivileged account ...

Exploits

Exploit DB: KDE 4/5 - 'KAuth' Local Privilege Escalation
// cc -Wall smb0kc -pedantic -std=c11 // // smb4k PoC, also demonstrating broader scope of a generic kde // authentication bypass vulnerability // // (C) 2017 Sebastian Krahmer // #define _POSIX_C_SOURCE 200112L #include <stdioh> #include <fcntlh> #include <unistdh> #include <stdlibh> #include <errnoh> #include ...

Github Repositories

https://github.com/stealth/plasmapulsar

PLASMA PULSAR

PLASMA PULSAR CVE-2017-8422, CVE-2017-8849 This document describes a generic root exploit against kde The exploit is achieved by abusing a logic flaw within the KAuth framework which is present in kde4 (orgkdeauth) and kde5 (orgkdekf5auth) It is possible to spoof what KAuth calls callerID's which are indeed D-Bus unique names of the sender of a D-Bus message Exploit

References

CWE-290https://www.kde.org/info/security/advisory-20170510-1.txthttps://cgit.kde.org/kdelibs.git/commit/?id=264e97625abe2e0334f97de17f6ffb52582888abhttps://cgit.kde.org/kauth.git/commit/?id=df875f725293af53399f5146362eb158b4f9216ahttps://bugzilla.redhat.com/show_bug.cgi?id=1449647http://www.openwall.com/lists/oss-security/2017/05/10/3http://www.securityfocus.com/bid/98412https://security.gentoo.org/glsa/201706-29http://www.securitytracker.com/id/1038480https://www.exploit-db.com/exploits/42053/http://www.debian.org/security/2017/dsa-3849https://access.redhat.com/errata/RHSA-2017:1264https://access.redhat.com/errata/RHSA-2017:1264https://usn.ubuntu.com/3286-1/https://nvd.nist.govhttps://www.exploit-db.com/exploits/42053/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907hardcodedinjectCVE-2024-20359CVE-2024-2467CVE-2024-4077CVE-2024-22391cameraCVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook