H1-684573 — Vulnetix

H1-684573 PUBLISHED CVSS 7 HIGH

Linux kernel: CVE-2017-1000112: a memory corruption due to UFO to non-UFO path switch

Risk Scores

CVSS 3.1

7

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploit Intelligence

Spydomain/CVE-2017-1000112-PoC (github-poc)
Exploit work Privilege Escalation CVE-2017-1000112 (github-poc)
POE code for CVE-2017-1000112 adapted to both funtion on a specific VM and Escape a Docker (github-poc)
Escape from Docker using CVE-2017-1000112 and CVE-2017-18344, including gaining root privilage, get all capbilities, namespace recovery, filesystem recovery, cgroup limitation bypass and seccomp bypass. (github-poc)
Linux kernel: CVE-2017-1000112: a memory corruption due to UFO to non-UFO path switch (hackerone)
Linux kernel: CVE-2017-1000112: a memory corruption due to UFO to non-UFO path switch (hackerone)

Timeline

Sep 11, 2019 CVE Published
Sep 11, 2019 PoC Published

References

Linux kernel: CVE-2017-1000112: a memory corruption due to UFO to non-UFO path switch advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›