Privilege Escalation via File System Capabilities in Linux Kernel

Privilege Escalation via File System Capabilities in Linux Kernel

CVE-2012-2123 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

The cap_bprm_set_creds function in security/commoncap.c in the Linux kernel before 3.3.3 does not properly handle the use of file system capabilities (aka fcaps) for implementing a privileged executable file, which allows local users to bypass intended personality restrictions via a crafted application, as demonstrated by an attack that uses a parent process to disable ASLR.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.