CVE-2017-1000408

HIGH

glibc 2.1.1 - Memory Leak via LD_HWCAP_MASK Environment Variable

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-1000408. PoCs published by Qualys Corporation.

AI-analyzed exploit summary The document describes a buffer overflow (CVE-2017-1000409) and memory leak (CVE-2017-1000408) in glibc's dynamic loader (ld.so), exploitable via LD_LIBRARY_PATH and LD_HWCAP_MASK environment variables. It includes a detailed analysis of the vulnerabilities but does not contain executable exploit code.

Description

A memory leak in glibc 2.1.1 (released on May 24, 1999) can be reached and amplified through the LD_HWCAP_MASK environment variable. Please note that many versions of glibc are not vulnerable to this issue if patched for CVE-2017-1000366.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Qualys Corporation · textlocallinux

https://www.exploit-db.com/exploits/43331

View Code ZIP pw:eip

The document describes a buffer overflow (CVE-2017-1000409) and memory leak (CVE-2017-1000408) in glibc's dynamic loader (ld.so), exploitable via LD_LIBRARY_PATH and LD_HWCAP_MASK environment variables. It includes a detailed analysis of the vulnerabilities but does not contain executable exploit code.

Classification

Writeup 100%

Attack Type

Lpe

Complexity

Moderate

Reliability

Theoretical

Target: glibc (2.5 to 2.25)

No auth needed

Prerequisites: Unpatched glibc version · SUID binary execution · Disabled protected_hardlinks

MITRE ATT&CK

T1555.001 - Keychain

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6

Core References

Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/43331/

Exploit, Mailing List, Third Party Advisory mailing-list x_refsource_mlist

http://seclists.org/oss-sec/2017/q4/385

Vendor Advisory x_refsource_confirm

https://security.netapp.com/advisory/ntap-20190404-0003/

Mailing List mailing-list x_refsource_mlist

http://www.openwall.com/lists/oss-security/2019/06/27/7

Mailing List mailing-list x_refsource_mlist

http://www.openwall.com/lists/oss-security/2019/06/28/1

Mailing List mailing-list x_refsource_mlist

http://www.openwall.com/lists/oss-security/2019/06/28/2

Scores

CVSS v3 7.8

EPSS 0.0148

EPSS Percentile 70.4%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-772

Status published

Products (1)

gnu/glibc 2.1.1

Published Feb 01, 2018

Tracked Since Feb 18, 2026