Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2017-0358Improper Privilege Management in Ntfs-3g

CWE-269Improper Privilege Management9 documents8 sources
Severity
7.8HIGHNVD
EPSS
7.5%
top 8.16%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
3
Tuxera Ntfs-3gNtfs-3gDebian Linux
Timeline
PublishedApr 13
Latest updateMay 13

Description

Jann Horn of Google Project Zero discovered that NTFS-3G, a read-write NTFS driver for FUSE, does not scrub the environment before executing modprobe with elevated privileges. A local user can take advantage of this flaw for local root privilege escalation.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

Debiantuxera/ntfs-3g< 1:2016.2.22AR.1-4+3
NVDtuxera/ntfs-3g2016.2.22
CVEListV5ntfs-3g/ntfs-3gn/a

Also affects: Debian Linux 8.0

🔴Vulnerability Details

3
GHSA
GHSA-vghw-r4fc-pgpf: Jann Horn of Google Project Zero discovered that NTFS-3G, a read-write NTFS driver for FUSE, does not scrub the environment before executing modprobe2022-05-13
CVEList
ntfs-3g: Modprobe influence vulnerability via environment variables2018-04-13
OSV
CVE-2017-0358: Jann Horn of Google Project Zero discovered that NTFS-3G, a read-write NTFS driver for FUSE, does not scrub the environment before executing modprobe2018-04-13

💥Exploits & PoCs

2
Exploit-DB
ntfs-3g - Unsanitized modprobe Environment Privilege Escalation2017-02-14
Exploit-DB
ntfs-3g (Debian 9) - Local Privilege Escalation2017-02-03

📋Vendor Advisories

2
Ubuntu
NTFS-3G vulnerability2017-02-01
Debian
CVE-2017-0358: ntfs-3g - Jann Horn of Google Project Zero discovered that NTFS-3G, a read-write NTFS driv...2017

💬Community

1
Bugzilla
CVE-2017-0358 ntfs-3g: Modprobe influence vulnerability via environment variables2017-02-02
CVE-2017-0358 — Improper Privilege Management | cvebase