Vulnerability Description
The PTR_MANGLE implementation in the GNU C Library (aka glibc or libc6) 2.4, 2.17, and earlier, and Embedded GLIBC (EGLIBC) does not initialize the random value for the pointer guard, which makes it easier for context-dependent attackers to control execution flow by leveraging a buffer-overflow vulnerability in an application and using the known zero value pointer guard to calculate a pointer address.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Gnu | Glibc | <= 2.17 |
| Gnu | Eglibc | All versions |
Related Weaknesses (CWE)
References
- http://hmarco.org/bugs/CVE-2013-4788.htmlExploitPatch
- http://seclists.org/fulldisclosure/2015/Sep/23
- http://www.mandriva.com/security/advisories?name=MDVSA-2013:283
- http://www.mandriva.com/security/advisories?name=MDVSA-2013:284
- http://www.openwall.com/lists/oss-security/2013/07/15/9ExploitPatch
- http://www.securityfocus.com/bid/61183
- https://security.gentoo.org/glsa/201503-04
- http://hmarco.org/bugs/CVE-2013-4788.htmlExploitPatch
- http://seclists.org/fulldisclosure/2015/Sep/23
- http://www.mandriva.com/security/advisories?name=MDVSA-2013:283
- http://www.mandriva.com/security/advisories?name=MDVSA-2013:284
- http://www.openwall.com/lists/oss-security/2013/07/15/9ExploitPatch
- http://www.securityfocus.com/bid/61183
- https://security.gentoo.org/glsa/201503-04
FAQ
What is CVE-2013-4788?
CVE-2013-4788 is a vulnerability with a CVSS score of 5.1 (MEDIUM). The PTR_MANGLE implementation in the GNU C Library (aka glibc or libc6) 2.4, 2.17, and earlier, and Embedded GLIBC (EGLIBC) does not initialize the random value for the pointer guard, which makes it e...
How severe is CVE-2013-4788?
CVE-2013-4788 has been rated MEDIUM with a CVSS base score of 5.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-4788?
Check the references section above for vendor advisories and patch information. Affected products include: Gnu Glibc, Gnu Eglibc.