CVE-2019-8956

HIGH

Linux Kernel 4.17-4.19.20 - Use-After-Free in SCTP Sendmsg Function

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-8956. PoCs published by butterflyhack.

AI-analyzed exploit summary This PoC exploits CVE-2019-8956, a vulnerability in the SCTP protocol implementation, by sending malformed SCTP messages to trigger a denial-of-service condition. The code demonstrates the exploit by creating multiple threads to send and receive SCTP messages with specific flags.

Description

In the Linux Kernel before versions 4.20.8 and 4.19.21 a use-after-free error in the "sctp_sendmsg()" function (net/sctp/socket.c) when handling SCTP_SENDALL flag can be exploited to corrupt memory.

Exploits (1)

nomisec WORKING POC 8 stars

by butterflyhack · poc

https://github.com/butterflyhack/CVE-2019-8956

View Code ZIP pw:eip

This PoC exploits CVE-2019-8956, a vulnerability in the SCTP protocol implementation, by sending malformed SCTP messages to trigger a denial-of-service condition. The code demonstrates the exploit by creating multiple threads to send and receive SCTP messages with specific flags.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Linux kernel SCTP implementation (versions affected by CVE-2019-8956)

No auth needed

Prerequisites: SCTP library installed · Target system running a vulnerable version of the Linux kernel

MITRE ATT&CK