Exploit for #VU6526 Heap-out-of-bounds write in Linux kernel and linux_kernel (Debian package)

Cybersecurity Help s.r.o.

Published: 2020-03-18 | Updated: 2021-06-17

Vulnerability identifier: #VU6526

Vulnerability risk: Low

CVSSv4.0: 6.8 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:A/U:Clear]

CVE-ID: CVE-2017-7308

CWE-ID: CWE-787

Exploitation vector: Local

Exploits in database: 3

June 17, 2021
- Linux 4.8.0 < 4.8.0-46 - AF_PACKET packet_set_ring Privilege Escalation (Metasploit) [Exploit-DB]
- Linux Kernel 4.8.0-34 < 4.8.0-45 (Ubuntu / Linux Mint) - Packet Socket Local Privilege Escalation [Exploit-DB]
March 18, 2020
- Linux Kernel 4.8.0 (Ubuntu) - Packet Socket Local Privilege Escalation [Exploit-DB]

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system
linux_kernel (Debian package)
Operating systems & Components / Operating system package or component

Vendor: Linux Foundation
Debian