Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
435
VMScore

CVE-2018-1121

Published: 13/06/2018 Updated: 30/06/2020
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 5.9 | Impact Score: 3.6 | Exploitability Score: 2.2
VMScore: 435
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Subscribe to Procps

Vulnerability Summary

procps-ng, procps is vulnerable to a process hiding through race condition. Since the kernel's proc_pid_readdir() returns PID entries in ascending numeric order, a process occupying a high PID can use inotify events to determine when the process list is being scanned, and fork/exec to obtain a lower PID, thus avoiding enumeration. An unprivileged attacker can hide a process from procps-ng's utilities by exploiting a race condition in reading /proc/PID entries. This vulnerability affects procps and procps-ng up to version 3.3.15, newer versions might be affected also.

Vulnerable Product Search on Vulmon Subscribe to Product

procps project procps

Vendor Advisories

Red Hat: CVE-2018-1121
Since the kernel's proc_pid_readdir() returns PID entries in ascending numeric order, a process occupying a high PID can use inotify events to determine when the process list is being scanned, and fork/exec to obtain a lower PID, thus avoiding enumeration An unprivileged attacker can hide a process from procps-ng's utilities by exploiting a race c ...
Arch Linux Issues:
A security issue has been found in Linux <= 4169, where an unprivileged attacker can hide a process from procps-ng's utilities by exploiting either a denial of service (a rather noisy method) or a race condition inherent in reading /proc/PID entries (a stealthier method) ...

Exploits

Exploit DB: Procps-ng - Multiple Vulnerabilities
Qualys Security Advisory Procps-ng Audit Report ======================================================================== Contents ======================================================================== Summary 1 FUSE-backed /proc/PID/cmdline 2 Unprivileged process hiding 3 Local Privilege Escalation in top (Low Impact) 4 Denial of Service ...
Exploit DB: Procps-ng Audit Report
Qualys performed an extensive audit of procps-ng They discovered hundreds of bugs and vulnerabilities ...

References

CWE-362https://www.qualys.com/2018/05/17/procps-ng-audit-report-advisory.txthttps://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1121http://seclists.org/oss-sec/2018/q2/122https://www.exploit-db.com/exploits/44806/http://www.securityfocus.com/bid/104214https://nvd.nist.govhttps://www.exploit-db.com/exploits/44806/https://access.redhat.com/security/cve/cve-2018-1121
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040privilege escalationCVE-2024-4112CVE-2024-32872man-in-the-middleCVE-2024-32788bypassCVE-2024-3400CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook