CVE-2007-0253

Unspecified vulnerability in the grsecurity patch has unspecified impact and remote attack vectors, a different vulnerability than the expand_stack vulnerability from the Digital Armaments 20070110 pre-advisory. NOTE: the grsecurity developer has disputed this issue, stating that "the function they claim the vulnerability to be in is a trivial function, which can, and has been, easily checked for any supposed vulnerabilities." The developer also cites a past disclosure that was not proven

Published: Jan 17, 2007
Updated: Nov 8, 2023
CVE: CVE-2007-0253
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
grsecurity / grsecurity_kernel_patch	-	-

http://forums.grsecurity.net/viewtopic.php?t=1646
http://grsecurity.net/news.php#digitalfud
http://www.digitalarmaments.com/news_news.shtml

Vulnerability Database

CVE-2007-0253