CVE-2018-0492 : Johnathan Nightingale beep through 1.3.4, if setuid, has a race condition that a

Johnathan Nightingale beep through 1.3.4, if setuid, has a race condition that allows local privilege escalation.

Published 2018-04-03 07:29:00

Updated 2019-03-14 18:43:10

Source Debian GNU/Linux

View at NVD, CVE.org

Vulnerability category: Gain privilege

Products affected by CVE-2018-0492

Debian » Debian Linux » Version: 7.0
cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
Matching versions
Debian » Debian Linux » Version: 8.0
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
Matching versions
Debian » Debian Linux » Version: 9.0
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Matching versions
Beep Project » Beep
Versions up to, including, (<=) 1.3.4
cpe:2.3:a:beep_project:beep:*:*:*:*:*:*:*:*
Matching versions

EPSS FAQ

1.73%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 81 %

Percentile, the proportion of vulnerabilities that are scored at or less

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.4	MEDIUM	AV:L/AC:M/Au:N/C:P/I:P/A:P	3.4	6.4	NIST
Access Vector: Local Access Complexity: Medium Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
7.0	HIGH	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H	1.0	5.9	NIST
Attack Vector: Local Attack Complexity: High Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

Assigned by: nvd@nist.gov (Primary)

https://security.gentoo.org/glsa/201805-15

beep: Local privilege escalation (GLSA 201805-15) — Gentoo security
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2018/04/msg00002.html

[SECURITY] [DLA 1338-1] beep security update
Mailing List;Third Party Advisory
https://www.exploit-db.com/exploits/44452/

GNU Beep 1.3 - 'HoleyBeep' Local Privilege Escalation
Exploit;Third Party Advisory;VDB Entry
https://www.debian.org/security/2018/dsa-4163

Debian -- Security Information -- DSA-4163-1 beep
Third Party Advisory
https://lists.debian.org/debian-security-announce/2018/msg00089.html

[SECURITY] [DSA 4163-1] beep security update
Mailing List;Third Party Advisory
https://security-tracker.debian.org/tracker/CVE-2018-0492

CVE-2018-0492
Third Party Advisory

Jump to