Stack Guard Page Bypass Vulnerability in OpenBSD 6.1 and Earlier Versions

Stack Guard Page Bypass Vulnerability in OpenBSD 6.1 and Earlier Versions

CVE-2017-1000372 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

A flaw exists in OpenBSD's implementation of the stack guard page that allows attackers to bypass it resulting in arbitrary code execution using setuid binaries such as /usr/bin/at. This affects OpenBSD 6.1 and possibly earlier versions.

Learn more about our Web Application Penetration Testing UK.