CVE-2017-1000376

CVSS v3.1

7.0

High

Vector

AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions libffi versions prior to 3.1

Description The issue is caused by libffi requesting an executable stack, allowing attackers to more easily trigger arbitrary code execution by overwriting the stack. This is due to a buffer overflow operation in memory, which can be exploited by a local attacker to execute arbitrary code on 32-bit x86 systems, specifically on the i386 architecture, by forcing the stack to be executable.

Recommendations For libffi versions prior to 3.1, update to version 3.1 or later to resolve the issue. As a temporary workaround, consider disabling the executable stack feature until a patch is available. Restrict access to libffi on 32-bit x86 systems to minimize the risk of exploitation.

Exploit

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

BDU:2018-00006

CVE-2017-1000376

DLA-997-1

DSA-3889-1

ECHO-284D-D78F-39DB

MGASA-2017-0201

SUSE-SU-2018:0300-1

USN-3454-1

USN-3454-2

Affected Products

Ubuntu

Libffi

CVE-2017-1000376

Weakness Enumeration

Related Identifiers

Affected Products

References · 32