Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2016-1247

CWE-5912 documents9 sources

Severity

7.8HIGH

EPSS

9.8%

top 7.02%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

F5 Nginx Fedoraproject Fedora

Timeline

PublishedNov 29

Latest updateMay 13

Description

The nginx package before 1.6.2-5+deb8u3 on Debian jessie, the nginx packages before 1.4.6-1ubuntu3.6 on Ubuntu 14.04 LTS, before 1.10.0-0ubuntu0.16.04.3 on Ubuntu 16.04 LTS, and before 1.10.1-0ubuntu1.1 on Ubuntu 16.10, and the nginx ebuild before 1.10.2-r3 on Gentoo allow local users with access to the web server user account to gain root privileges via a symlink attack on the error log.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

▶Debiannginx< 1.10.2-1+3

▶NVDf5/nginx1.10.1+3

Also affects: Fedora 33, 34, 35

🔴Vulnerability Details

GHSA

GHSA-4333-xxh4-gh9f: The nginx package before 1↗2022-05-13

▶

OSV

CVE-2016-1247: The nginx package before 1↗2016-11-29

▶

CVEList

CVE-2016-1247: The nginx package before 1↗2016-11-29

▶

💥Exploits & PoCs

Exploit-DB

Nginx (Debian Based Distros + Gentoo) - 'logrotate' Local Privilege Escalation↗2016-11-16

▶

Exploit-DB

Excel RTD - Memory Corruption↗2010-09-10

▶

📋Vendor Advisories

Ubuntu

nginx vulnerability↗2016-10-25

▶

Red Hat

nginx: Local privilege escalation via log files↗2016-10-25

▶

Debian

CVE-2016-1247: nginx - The nginx package before 1.6.2-5+deb8u3 on Debian jessie, the nginx packages bef...↗2016

▶

💬Community

Bugzilla

CVE-2016-1247 nginx: Local privilege escalation via log files [fedora-all]↗2016-10-31

▶

Bugzilla

CVE-2016-1247 nginx: Local privilege escalation via log files↗2016-10-31

▶

Bugzilla

CVE-2016-1247 nginx: Local privilege escalation via log files [epel-all]↗2016-10-31

▶