CVE-2019-9162

HIGH

Linux Kernel 4.19-4.19.24 - Out-of-bounds Write in SNMP NAT Module

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-9162. PoCs published by Google Security Research.

AI-analyzed exploit summary This exploit demonstrates an out-of-bounds read/write vulnerability in the Linux kernel's nf_nat_snmp_basic module (CVE-2019-9162). The PoC triggers the flaw by sending a malformed SNMP packet, causing the kernel to read/write memory beyond the packet buffer, potentially leading to privilege escalation or information leakage.

Description

In the Linux kernel before 4.20.12, net/ipv4/netfilter/nf_nat_snmp_basic_main.c in the SNMP NAT module has insufficient ASN.1 length checks (aka an array index error), making out-of-bounds read and write operations possible, leading to an OOPS or local privilege escalation. This affects snmp_version and snmp_helper.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Google Security Research · textdoslinux

https://www.exploit-db.com/exploits/46477

View Code ZIP pw:eip

This exploit demonstrates an out-of-bounds read/write vulnerability in the Linux kernel's nf_nat_snmp_basic module (CVE-2019-9162). The PoC triggers the flaw by sending a malformed SNMP packet, causing the kernel to read/write memory beyond the packet buffer, potentially leading to privilege escalation or information leakage.

Classification

Working Poc 95%

Attack Type

Lpe | Info Leak

Complexity

Complex

Reliability

Reliable

Target: Linux kernel 4.16 to 4.20 (nf_nat_snmp_basic module)

No auth needed

Prerequisites: Linux kernel with nf_nat_snmp_basic module loaded · Ability to send SNMP packets to the target · Network namespace configuration

MITRE ATT&CK