CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-0257

Unspecified vulnerability in the expand_stack function in grsecurity PaX allows local users to gain privileges via unspecified vectors. NOTE: the grsecurity developer has disputed this issue, stating that "the function they claim the vulnerability to be in is a trivial function, which can, and has been, easily checked for any supposed vulnerabilities." The developer also cites a past disclosure that was not proven. As of 20070120, the original researcher has released demonstration code

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 34.4%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 7.2

References

Products affected by CVE-2007-0257

Grsecurity » Grsecurity Kernel Patch » Version: 1.9.4

cpe:2.3:a:grsecurity:grsecurity_kernel_patch:1.9.4
Grsecurity » Grsecurity Kernel Patch » Version: 2.0.1

cpe:2.3:a:grsecurity:grsecurity_kernel_patch:2.0.1
Grsecurity » Grsecurity Kernel Patch » Version: 2.0.2

cpe:2.3:a:grsecurity:grsecurity_kernel_patch:2.0.2
Grsecurity » Grsecurity Kernel Patch » Version: 2.1.0

cpe:2.3:a:grsecurity:grsecurity_kernel_patch:2.1.0
Grsecurity » Grsecurity Kernel Patch » Version: 2.1.1

cpe:2.3:a:grsecurity:grsecurity_kernel_patch:2.1.1
Grsecurity » Grsecurity Kernel Patch » Version: 2.1.2

cpe:2.3:a:grsecurity:grsecurity_kernel_patch:2.1.2
Grsecurity » Grsecurity Kernel Patch » Version: 2.1.3

cpe:2.3:a:grsecurity:grsecurity_kernel_patch:2.1.3
Grsecurity » Grsecurity Kernel Patch » Version: 2.1.4

cpe:2.3:a:grsecurity:grsecurity_kernel_patch:2.1.4
Grsecurity » Grsecurity Kernel Patch » Version: 2.1.5

cpe:2.3:a:grsecurity:grsecurity_kernel_patch:2.1.5
Grsecurity » Grsecurity Kernel Patch » Version: 2.1.6

cpe:2.3:a:grsecurity:grsecurity_kernel_patch:2.1.6
Grsecurity » Grsecurity Kernel Patch » Version: 2.1.7

cpe:2.3:a:grsecurity:grsecurity_kernel_patch:2.1.7
Grsecurity » Grsecurity Kernel Patch » Version: 2.1.8

cpe:2.3:a:grsecurity:grsecurity_kernel_patch:2.1.8

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-0257

Products

Pricing

Contact Us