Back to search
CVE-2017-1085
Published: Sep 12, 2018
Modified: Sep 16, 2024
PUBLISHED
Description
In FreeBSD before 11.2-RELEASE, an application which calls setrlimit() to increase RLIMIT_STACK may turn a read-only memory region below the stack into a read-write region. A specially crafted executable could be exploited to execute arbitrary code in the user context.
| Vendor | Product | Versions |
|---|---|---|
FreeBSD | FreeBSD | affected before 11.2-RELEASE |
References
https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt
x_refsource_MISC
42279
exploit
x_refsource_EXPLOIT-DB
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now