CVE-2017-1000375

NetBSD maps the run-time link-editor ld.so directly below the stack region, even if ASLR is enabled, this allows attackers to more easily manipulate memory leading to arbitrary code execution. This affects NetBSD 7.1 and possibly earlier versions.
Configurations

Configuration 1 (hide)

cpe:2.3:o:netbsd:netbsd:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2017-06-19 16:29

Updated : 2024-02-04 19:29


NVD link : CVE-2017-1000375

Mitre link : CVE-2017-1000375

CVE.ORG link : CVE-2017-1000375


JSON object : View

Products Affected

netbsd

  • netbsd
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer