CVE-2013-4788

GNU C Library <2.17 - Buffer Overflow

Title source: llm

Description

The PTR_MANGLE implementation in the GNU C Library (aka glibc or libc6) 2.4, 2.17, and earlier, and Embedded GLIBC (EGLIBC) does not initialize the random value for the pointer guard, which makes it easier for context-dependent attackers to control execution flow by leveraging a buffer-overflow vulnerability in an application and using the known zero value pointer guard to calculate a pointer address.

Exploits (1)

exploitdb WORKING POC

by Hector Marco & Ismael Ripoll · clocallinux

https://www.exploit-db.com/exploits/28657

View Code ZIP pw:eip

References (7)

[Exploit, Patch] http://hmarco.org/bugs/CVE-2013-4788.html

[Mailing List] http://seclists.org/fulldisclosure/2015/Sep/23

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDVSA-2013:283

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDVSA-2013:284

[Exploit, Patch] http://www.openwall.com/lists/oss-security/2013/07/15/9

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/61183

[Third Party Advisory] https://security.gentoo.org/glsa/201503-04

Scores

EPSS 0.0756

EPSS Percentile 91.9%

Details

CWE

CWE-20

Status published

Products (28)

gnu/eglibc

gnu/glibc 2.0

gnu/glibc 2.0.1

gnu/glibc 2.0.2

gnu/glibc 2.0.3

gnu/glibc 2.0.4

gnu/glibc 2.0.5

gnu/glibc 2.0.6

gnu/glibc 2.1

gnu/glibc 2.1.1

... and 18 more

Published Oct 04, 2013

Tracked Since Feb 18, 2026