CVE-2012-4530

Linux kernel <3.7.2 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2012-4530. PoCs published by halfdog.

AI-analyzed exploit summary The writeup describes a Linux kernel vulnerability (CVE-2012-4530) in binfmt_script handling with CONFIG_MODULES enabled, leading to kernel stack data disclosure and excessive recursion beyond BINPRM_MAX_RECURSION. It explains the method of exploitation via crafted scripts and discusses the limited impact, primarily affecting Ubuntu kernels 3.2.0-29-generic.

Description

The load_script function in fs/binfmt_script.c in the Linux kernel before 3.7.2 does not properly handle recursion, which allows local users to obtain sensitive information from kernel stack memory via a crafted application.

Exploits (1)

exploitdb WRITEUP
by halfdog · textdoslinux
https://www.exploit-db.com/exploits/41767

The writeup describes a Linux kernel vulnerability (CVE-2012-4530) in binfmt_script handling with CONFIG_MODULES enabled, leading to kernel stack data disclosure and excessive recursion beyond BINPRM_MAX_RECURSION. It explains the method of exploitation via crafted scripts and discusses the limited impact, primarily affecting Ubuntu kernels 3.2.0-29-generic.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Theoretical
Target: Linux kernel (with CONFIG_MODULES and binfmt_script)
No auth needed
Prerequisites: Local code execution · CONFIG_MODULES enabled · binfmt_script support
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7

Scores

EPSS 0.0088
EPSS Percentile 54.4%

Details

CWE
CWE-200
Status published
Products (44)
linux/linux_kernel 3.0 rc1 (7 CPE variants)
linux/linux_kernel 3.0.1
linux/linux_kernel 3.0.2
linux/linux_kernel 3.0.3
linux/linux_kernel 3.0.4
linux/linux_kernel 3.0.5
linux/linux_kernel 3.0.6
linux/linux_kernel 3.0.7
linux/linux_kernel 3.0.8
linux/linux_kernel 3.0.9
... and 34 more
Published Feb 18, 2013
Tracked Since Feb 18, 2026