Vulnerability & Exploit Database

Displaying all 9 entries

Results for: CVE-2018-1000001 Back to search

Huawei EulerOS: CVE-2018-1000001: glibc security update Vulnerability

  • Severity: 7
  • Published: January 31, 2018

In glibc 2.26 and earlier there is confusion in the usage of getcwd() by realpath() which can be used to write before the destination buffer leading to a buffer underflow and potential code execution.

Huawei EulerOS: CVE-2018-1000001: glibc security update Vulnerability

  • Severity: 7
  • Published: January 31, 2018

In glibc 2.26 and earlier there is confusion in the usage of getcwd() by realpath() which can be used to write before the destination buffer leading to a buffer underflow and potential code execution.

Gentoo Linux: CVE-2018-1000001: glibc: Multiple vulnerabilities Vulnerability

  • Severity: 7
  • Published: January 31, 2018

In glibc 2.26 and earlier there is confusion in the usage of getcwd() by realpath() which can be used to write before the destination buffer leading to a buffer underflow and potential code execution.

glibc 'realpath()' Privilege Escalation Exploit

Disclosed: January 16, 2018

This module attempts to gain root privileges on Linux systems by abusing a vulnerability in GNU C Library (glibc) version 2.26 and prior. This module uses halfdog's RationalLove exploit to exploit a buffer underflow in glibc realpath() and create a SUID root shell. The exploit has offsets for glibc versions 2.23-...

SUSE: CVE-2018-1000001: SUSE Linux Security Advisory Vulnerability

  • Severity: 7
  • Published: January 12, 2018

In glibc 2.26 and earlier there is confusion in the usage of getcwd() by realpath() which can be used to write before the destination buffer leading to a buffer underflow and potential code execution.