Privilege Escalation via PID Spoofing in Linux Kernel

Privilege Escalation via PID Spoofing in Linux Kernel

CVE-2013-4300 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

The scm_check_creds function in net/core/scm.c in the Linux kernel before 3.11 performs a capability check in an incorrect namespace, which allows local users to gain privileges via PID spoofing.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.