Home CVE Database CVE-2018-1120

CVE-2018-1120

Description

An attacker can block any read() access to /proc/PID/cmdline by mmap()ing a FUSE file (Filesystem in Userspace) onto this process\'s command-line arguments. The attacker can therefore block pgrep, pidof, pkill, ps, and w, either forever (a denial of service), or for some controlled time (a synchronization tool for exploiting other Vulnerabilities)

Priority: LOW
CVSS v3: 5.3
Publish Date: May 30, 2018
Related ID: --
CVSS v2: MEDIUM
Modified Date: May 30, 2018

Find out more about CVE-2018-1120 from the MITRE-CVE dictionary and NIST NVD


Products Affected

Login may be required to access defects or downloads.

Related Products

Product Name Status Defect Fixed Downloads
Linux 7 SCP Fixed -- 7.0.0.29 --
Linux 7 CGP Not Vulnerable -- -- --

Comments

linux

Live chat
Online