CVE-2017-1000375

Name of the Vulnerable Software and Affected Versions NetBSD versions 7.1 and earlier

Description The issue is related to the mapping of the run-time link-editor ld.so directly below the stack region in NetBSD, even when Address Space Layout Randomization (ASLR) is enabled. This mapping allows attackers to more easily manipulate memory, potentially leading to arbitrary code execution. The vulnerability can be exploited by a remote attacker to execute arbitrary code.

Recommendations For NetBSD version 7.1 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.