CVE-2015-0235: CVE-2015-0235

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2015-0235

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and other 2.x versions before 2.18, allows context-dependent attackers to execute arbitrary code via vectors related to the (1) gethostbyname or (2) gethostbyname2 function, aka "GHOST."

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

GNU glibc 基于堆的缓冲区错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

GNU glibc（又名GNU C Library，libc6）是一种按照LGPL许可协议发布的开源免费的C语言编译程序。 GNU glibc 2.2版本和2.18之前2.x版本中的‘__nss_hostname_digits_dots’函数存在基于堆的缓冲区溢出漏洞。本地和远程攻击者都可通过调用‘ gethostbyname*()’函数利用该漏洞以运行应用程序的用户权限执行任意代码，控制系统。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2015-0235

#	POC Description	Source Link	Shenlong Link
1	Test wether you're exposed to ghost (CVE-2015-0235). All kudos go to Qualys Security	https://github.com/fser/ghost-checker	POC Details
2	A chef cookbook to test the GHOST vulnerability	https://github.com/mikesplain/CVE-2015-0235-cookbook	POC Details
3	Ansible playbook to check vulnerability for CVE-2015-0235	https://github.com/aaronfay/CVE-2015-0235-test	POC Details
4	glibc vulnerability GHOST(CVE-2015-0235) Affected software list	https://github.com/piyokango/ghost	POC Details
5	None	https://github.com/mholzinger/CVE-2015-0235_GHOST	POC Details
6	Ansible playbook, to check for CVE-2015-0235 (GHOST) vulnerability	https://github.com/adherzog/ansible-CVE-2015-0235-GHOST	POC Details
7	CVE-2015-0235 patches lenny libc6 packages for amd64	https://github.com/favoretti/lenny-libc6	POC Details
8	gethostbyname*() buffer overflow exploit in glibc - CVE-2015-0235 https://community.qualys.com/blogs/laws-of-vulnerabilities/2015/01/27/the-ghost-vulnerability	https://github.com/nickanderson/cfengine-CVE_2015_0235	POC Details
9	cookbook for update glibc. CVE-2015-0235(GHOST)	https://github.com/koudaiii-archives/cookbook-update-glibc	POC Details
10	Playbooks 'Fix for CVE-2015-0235(GHOST)' running on Ansible	https://github.com/F88/ghostbusters15	POC Details
11	glibc gethostbyname bug	https://github.com/tobyzxj/CVE-2015-0235	POC Details
12	A shared library wrapper with additional checks for vulnerable functions gethostbyname2_r gethostbyname_r (GHOST vulnerability)	https://github.com/makelinux/CVE-2015-0235-workaround	POC Details
13	CVE-2015-0235 EXIM ESTMP GHOST Glibc Gethostbyname() DoS Exploit/PoC	https://github.com/arm13/ghost_exploit	POC Details
14	CVE-2015-0235	https://github.com/alanmeyer/CVE-glibc	POC Details
15	Script to test vulnarability for CVE-2015-0235	https://github.com/1and1-serversupport/ghosttester	POC Details
16	None	https://github.com/sUbc0ol/CVE-2015-0235	POC Details
17	A check for GHOST; cve-2015-0235	https://github.com/chayim/GHOSTCHECK-cve-2015-0235	POC Details
18	None	https://github.com/limkokholefork/GHOSTCHECK-cve-2015-0235	POC Details
19	None	https://github.com/furyutei/CVE-2015-0235_GHOST	POC Details

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2015-0235

Please Login to view more intelligence information

http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.htmlx_refsource_CONFIRM
https://www.arista.com/en/support/advisories-notices/security-advisories/1053-security-advisory-9x_refsource_MISC
http://packetstormsecurity.com/files/130171/Exim-ESMTP-GHOST-Denial-Of-Service.htmlx_refsource_MISC
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10671x_refsource_CONFIRM
http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.htmlx_refsource_CONFIRM
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04874668x_refsource_CONFIRM
https://www.sophos.com/en-us/support/knowledgebase/121879.aspxx_refsource_CONFIRM
https://support.apple.com/HT205375x_refsource_CONFIRM
http://packetstormsecurity.com/files/153278/WAGO-852-Industrial-Managed-Switch-Series-Code-Execution-Hardcoded-Credentials.htmlx_refsource_MISC
http://www-01.ibm.com/support/docview.wss?uid=swg21696618x_refsource_CONFIRM
http://www.websense.com/support/article/kbarticle/Vulnerabilities-resolved-in-TRITON-APX-Version-8-0x_refsource_CONFIRM
http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.htmlx_refsource_CONFIRM
https://kc.mcafee.com/corporate/index?page=content&id=SB10100x_refsource_CONFIRM
http://packetstormsecurity.com/files/130974/Exim-GHOST-glibc-gethostbyname-Buffer-Overflow.htmlx_refsource_MISC
https://bto.bluecoat.com/security-advisory/sa90x_refsource_CONFIRM
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.htmlx_refsource_CONFIRM
http://packetstormsecurity.com/files/167552/Nexans-FTTO-GigaSwitch-Outdated-Components-Hardcoded-Backdoor.htmlx_refsource_MISC
http://support.apple.com/kb/HT204942x_refsource_CONFIRM
http://www-01.ibm.com/support/docview.wss?uid=swg21696600x_refsource_CONFIRM
https://help.ecostruxureit.com/display/public/UADCO8x/StruxureWare+Data+Center+Operation+Software+Vulnerability+Fixesx_refsource_CONFIRM
http://www-01.ibm.com/support/docview.wss?uid=swg21696602x_refsource_CONFIRM
http://linux.oracle.com/errata/ELSA-2015-0092.htmlx_refsource_CONFIRM
http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.htmlx_refsource_CONFIRM
https://cert-portal.siemens.com/productcert/pdf/ssa-994726.pdfx_refsource_CONFIRM
https://community.qualys.com/blogs/laws-of-vulnerabilities/2015/01/27/the-ghost-vulnerabilityx_refsource_MISC
http://www.idirect.net/Partners/~/media/Files/CVE/iDirect-Posted-Common-Vulnerabilities-and-Exposures.pdfx_refsource_CONFIRM
http://www-01.ibm.com/support/docview.wss?uid=swg21695695x_refsource_CONFIRM
http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.htmlx_refsource_CONFIRM
http://www-01.ibm.com/support/docview.wss?uid=swg21695835x_refsource_CONFIRM
http://www-01.ibm.com/support/docview.wss?uid=swg21696131x_refsource_CONFIRM
http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.htmlx_refsource_CONFIRM
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.htmlx_refsource_CONFIRM
http://packetstormsecurity.com/files/130768/EMC-Secure-Remote-Services-GHOST-SQL-Injection-Command-Injection.htmlx_refsource_MISC
http://packetstormsecurity.com/files/164014/Moxa-Command-Injection-Cross-Site-Scripting-Vulnerable-Software.htmlx_refsource_MISC
http://linux.oracle.com/errata/ELSA-2015-0090.htmlx_refsource_CONFIRM
https://www.f-secure.com/en/web/labs_global/fsc-2015-1x_refsource_CONFIRM
http://www-01.ibm.com/support/docview.wss?uid=swg21696243x_refsource_CONFIRM
http://www-01.ibm.com/support/docview.wss?uid=swg21696526x_refsource_CONFIRM
https://www.qualys.com/research/security-advisories/GHOST-CVE-2015-0235.txtx_refsource_MISC
http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.htmlx_refsource_CONFIRM
https://support.apple.com/HT205267x_refsource_CONFIRM
https://security.netapp.com/advisory/ntap-20150127-0001/x_refsource_CONFIRM
http://blogs.sophos.com/2015/01/29/sophos-products-and-the-ghost-vulnerability-affecting-linux/x_refsource_CONFIRM
http://www-01.ibm.com/support/docview.wss?uid=swg21695774x_refsource_CONFIRM
http://secunia.com/advisories/62812third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/62870third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/62813third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/62883third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/62517third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/62680third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/62879third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/62681third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/62865third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/62692third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/72325vdb-entryx_refsource_BID
http://secunia.com/advisories/62691third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/62698third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/62688third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/62640third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/62871third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/62690third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/62667third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/62816third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/62715third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/62758third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/91787vdb-entryx_refsource_BID
http://www.securitytracker.com/id/1032909vdb-entryx_refsource_SECTRACK
http://www.debian.org/security/2015/dsa-3142vendor-advisoryx_refsource_DEBIAN
http://marc.info/?l=bugtraq&m=142296726407499&w=2vendor-advisoryx_refsource_HP
http://marc.info/?l=bugtraq&m=142781412222323&w=2vendor-advisoryx_refsource_HP
http://marc.info/?l=bugtraq&m=143145428124857&w=2vendor-advisoryx_refsource_HP
http://marc.info/?l=bugtraq&m=142721102728110&w=2vendor-advisoryx_refsource_HP
http://rhn.redhat.com/errata/RHSA-2015-0126.htmlvendor-advisoryx_refsource_REDHAT
http://www.mandriva.com/security/advisories?name=MDVSA-2015:039vendor-advisoryx_refsource_MANDRIVA
https://security.gentoo.org/glsa/201503-04vendor-advisoryx_refsource_GENTOO
http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.htmlvendor-advisoryx_refsource_APPLE
http://lists.apple.com/archives/security-announce/2015/Oct/msg00005.htmlvendor-advisoryx_refsource_APPLE
http://lists.apple.com/archives/security-announce/2015/Jun/msg00002.htmlvendor-advisoryx_refsource_APPLE
http://www.securityfocus.com/archive/1/534845/100/0/threadedmailing-listx_refsource_BUGTRAQ
http://www.openwall.com/lists/oss-security/2021/05/04/7mailing-listx_refsource_MLIST
http://seclists.org/oss-sec/2015/q1/269mailing-listx_refsource_BUGTRAQ
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150128-ghostvendor-advisoryx_refsource_CISCO
http://seclists.org/fulldisclosure/2021/Sep/0mailing-listx_refsource_FULLDISC
http://seclists.org/oss-sec/2015/q1/274mailing-listx_refsource_BUGTRAQ
http://seclists.org/fulldisclosure/2015/Jan/111mailing-listx_refsource_FULLDISC
https://seclists.org/bugtraq/2019/Jun/14mailing-listx_refsource_BUGTRAQ
http://seclists.org/fulldisclosure/2019/Jun/18mailing-listx_refsource_FULLDISC
http://seclists.org/fulldisclosure/2022/Jun/36mailing-listx_refsource_FULLDISC
https://nvd.nist.gov/vuln/detail/CVE-2015-0235

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2015-0235

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2015-0235

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2015-0235

III. Intelligence Information for CVE-2015-0235

IV. Related Vulnerabilities

V. Comments for CVE-2015-0235

Leave a comment