CVE-2008-0600

EXPLOITED

Linux Kernel - Code Injection

Title source: rule

Description

The vmsplice_to_pipe function in Linux kernel 2.6.17 through 2.6.24.1 does not validate a certain userspace pointer before dereference, which allows local users to gain root privileges via crafted arguments in a vmsplice system call, a different vulnerability than CVE-2008-0009 and CVE-2008-0010.

Exploits (2)

exploitdb WORKING POC VERIFIED

by qaaz · clocallinux

https://www.exploit-db.com/exploits/5092

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by qaaz · clocallinux

https://www.exploit-db.com/exploits/5093

View Code ZIP pw:eip

References (40)

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00005.html

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00002.html

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00006.html

[Exploit] http://marc.info/?l=linux-kernel&m=120263652322197&w=2

[Exploit] http://marc.info/?l=linux-kernel&m=120264520431307&w=2

[Exploit] http://marc.info/?l=linux-kernel&m=120264773202422&w=2

[Exploit] http://marc.info/?l=linux-kernel&m=120266328220808&w=2

[Exploit] http://marc.info/?l=linux-kernel&m=120266353621139&w=2

[Third Party Advisory] http://secunia.com/advisories/28835

[Third Party Advisory] http://secunia.com/advisories/28858

[Third Party Advisory] http://secunia.com/advisories/28875

[Third Party Advisory] http://secunia.com/advisories/28889

[Third Party Advisory] http://secunia.com/advisories/28896

[Third Party Advisory] http://secunia.com/advisories/28912

[Third Party Advisory] http://secunia.com/advisories/28925

[Third Party Advisory] http://secunia.com/advisories/28933

[Third Party Advisory] http://secunia.com/advisories/28937

[Third Party Advisory] http://secunia.com/advisories/29245

[Third Party Advisory] http://secunia.com/advisories/30818

[Third Party Advisory, VDB Entry] http://securitytracker.com/id?1019393

... and 20 more

Scores

EPSS 0.0028

EPSS Percentile 50.9%

Exploitation Intel

VulnCheck KEV 2010-08-12

Classification

CWE

CWE-94

Status draft

Affected Products (50)

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

... and 35 more

Timeline

Published Feb 12, 2008

Tracked Since Feb 18, 2026