#VU11547 Insecure DLL loading in Glibc - CVE-2017-16997

Cybersecurity Help s.r.o.

Published: 2018-04-04 | Updated: 2018-04-05

Vulnerability identifier: #VU11547

Vulnerability risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2017-16997

CWE-ID: CWE-427

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Glibc
Universal components / Libraries / Libraries used by multiple products

Vendor: GNU

Description

The vulnerability allows a local attacker to compromise vulnerable system.

The weakness exists in elf/dl-load.c due to insecure .dll loading mechanism when opening files. Alocal attacker can place a file along with specially crafted .dll file on a remote SBM or WebDAV share and execute arbitrary code on the target system with elevated privileges.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

Mitigation
Update to version 2.27.

Vulnerable software versions

Glibc: 2.19 - 2.26

External links
https://sourceware.org/bugzilla/show_bug.cgi?id=22625

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Amazon Linux AMI update for glibc

Red Hat update for glibc

Gentoo update for glibc

OpenSUSE Linux update for glibc

SUSE Linux update for glibc