In FreeBSD before 11.2-RELEASE, multiple issues with the implementation of the stack guard-page reduce the protections afforded by the guard-page. This results in the possibility a poorly written process could be cause a stack overflow.
References
Link | Resource |
---|---|
https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt | Exploit Technical Description Third Party Advisory |
https://www.exploit-db.com/exploits/42278/ | Third Party Advisory VDB Entry |
https://www.exploit-db.com/exploits/42277/ | Third Party Advisory VDB Entry |
Configurations
Information
Published : 2018-09-12 07:29
Updated : 2018-11-23 09:18
NVD link : CVE-2017-1084
Mitre link : CVE-2017-1084
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
freebsd
- freebsd