cve/2015/CVE-2015-3245.md

CVE-2015-3245

Description

Incomplete blacklist vulnerability in the chfn function in libuser before 0.56.13-8 and 0.60 before 0.60-7, as used in the userhelper program in the usermode package, allows local users to cause a denial of service (/etc/passwd corruption) via a newline character in the GECOS field.

POC

Reference

• https://www.exploit-db.com/exploits/44633/
• https://www.qualys.com/2015/07/23/cve-2015-3245-cve-2015-3246/cve-2015-3245-cve-2015-3246.txt

Github

• https://github.com/ARGOeu-Metrics/secmon-probes
• https://github.com/ARGOeu/secmon-probes
• https://github.com/ARPSyndicate/cvemon
• https://github.com/joubin/Reddit2PDF