CVE-2017-1085

HIGH

Freebsd < 11.2 - Memory Corruption

Title source: rule

Description

In FreeBSD before 11.2-RELEASE, an application which calls setrlimit() to increase RLIMIT_STACK may turn a read-only memory region below the stack into a read-write region. A specially crafted executable could be exploited to execute arbitrary code in the user context.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Qualys Corporation · cdosfreebsd_x86

https://www.exploit-db.com/exploits/42279

View Code ZIP pw:eip

References (2)

[Third Party Advisory, VDB Entry] https://www.exploit-db.com/exploits/42279/

[Exploit, Technical Description, Third Party Advisory] https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt

Scores

CVSS v3 7.8

EPSS 0.0062

EPSS Percentile 70.1%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-119

Status published

Products (1)

freebsd/freebsd < 11.2

Published Sep 12, 2018

Tracked Since Feb 18, 2026