CVE-2009-1185
Udev < 141 - Origin Validation Error
Title source: ruleDescription
udev before 1.4.1 does not verify whether a NETLINK message originates from kernel space, which allows local users to gain privileges by sending a NETLINK message from user space.
Exploits (4)
exploitdb
WORKING POC
VERIFIED
by Jon Oberheide · clocallinux
https://www.exploit-db.com/exploits/8572
exploitdb
WORKING POC
VERIFIED
by Metasploit · rubylocallinux
https://www.exploit-db.com/exploits/21848
exploitdb
WORKING POC
VERIFIED
by kingcope · bashlocallinux
https://www.exploit-db.com/exploits/8478
metasploit
WORKING POC
GREAT
by kcope, Jon Oberheide, egypt · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/local/udev_netlink.rb
References (39)
... and 19 more
Scores
EPSS
0.8951
EPSS Percentile
99.5%
Classification
CWE
CWE-346
Status
draft
Affected Products (22)
udev_project/udev
< 141
suse/linux_enterprise_debuginfo
suse/linux_enterprise_debuginfo
opensuse/opensuse
opensuse/opensuse
opensuse/opensuse
suse/linux_enterprise_desktop
suse/linux_enterprise_desktop
suse/linux_enterprise_server
suse/linux_enterprise_server
debian/debian_linux
debian/debian_linux
canonical/ubuntu_linux
canonical/ubuntu_linux
canonical/ubuntu_linux
... and 7 more
Timeline
Published
Apr 17, 2009
Tracked Since
Feb 18, 2026