CVE-2012-0056 : The mem_write function in the Linux kernel before 3.2.2, when ASLR is disabled, does not properly check permissions when

The mem_write function in the Linux kernel before 3.2.2, when ASLR is disabled, does not properly check permissions when writing to /proc/<pid>/mem, which allows local users to gain privileges by modifying process memory, as demonstrated by Mempodipper.

Published 2012-01-27 15:55:05

Updated 2023-07-27 15:21:01

Source Red Hat, Inc.

View at NVD, CVE.org

Threat overview for CVE-2012-0056

Top countries where our scanners detected CVE-2012-0056

Top open port discovered on systems with this issue 49152

IPs affected by CVE-2012-0056 252

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2012-0056!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2012-0056

Probability of exploitation activity in the next 30 days: 0.12%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 46 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2012-0056

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
6.9	MEDIUM	AV:L/AC:M/Au:N/C:C/I:C/A:C	3.4	10.0	NIST
Access Vector: Local Access Complexity: Medium Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

CWE ids for CVE-2012-0056

CWE-264

Assigned by: nvd@nist.gov (Primary)

References for CVE-2012-0056

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=e268337dfe26dfc7efd422a804dbb27977a3cccc

Vendor Advisory
http://blog.zx2c4.com/749

CVE-2012-0056 - Mempodipper, a linux local root exploit.
Third Party Advisory
http://www.securityfocus.com/bid/51625

Linux Kernel CVE-2012-0056 Local Privilege Escalation Vulnerability
Third Party Advisory;VDB Entry
http://www.kb.cert.org/vuls/id/470151

VU#470151 - Linux Kernel local privilege escalation via SUID /proc/pid/mem write
Third Party Advisory;US Government Resource
http://www.redhat.com/support/errata/RHSA-2012-0052.html

Support
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=782642

782642 – (CVE-2012-0056) CVE-2012-0056 kernel: proc: /proc/<pid>/mem mem_write insufficient permission checking
Issue Tracking;Third Party Advisory
http://ubuntu.com/usn/usn-1336-1

USN-1336-1: Linux kernel vulnerability | Ubuntu security notices
Third Party Advisory
http://www.openwall.com/lists/oss-security/2012/01/19/4

oss-security - Re: CVE request: kernel: proc: clean up and fix /proc/<pid>/mem handling
Mailing List;Third Party Advisory
http://www.openwall.com/lists/oss-security/2012/01/22/4

oss-security - Re: CVE request: kernel: proc: clean up and fix /proc/<pid>/mem handling
Mailing List;Third Party Advisory
http://www.openwall.com/lists/oss-security/2012/01/18/2

oss-security - Re: CVE request: kernel: proc: clean up and fix /proc/<pid>/mem handling
Mailing List;Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2012-0061.html

Support
Third Party Advisory
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.2

Vendor Advisory

CVEs referencing this url
http://www.openwall.com/lists/oss-security/2012/01/18/1

oss-security - CVE request: kernel: proc: clean up and fix /proc/<pid>/mem handling
Mailing List;Third Party Advisory

Products affected by CVE-2012-0056