Intrusion Prevention

Linux.Kernel.Copy.On.Write.Privilege.Escalation

Description

This indicates an attack attempt to exploit a Privilege Escalation vulnerability in Linux Kernel.
The vulnerability is due to an error in the way Linux kernel's memory subsystem handles copy-on-write (COW). A remote attacker may be able to exploit this to leverage their privileges on vulnerable systems.

Affected Products

Linux Kernel after 2.6.22

Impact

Privilege Escalation: Remote attackers can leverage their privileges on vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=19be0eaffa3ac7d8eb6784ad9bdbc7d67ed8e619

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date	Version	Detail
2019-06-10	14.629	Severity:critical:high

References

http://dirtycow.ninja/

ID	43320
Created	Oct 26, 2016
Updated	Jun 07, 2019
Risk
CVE ID	CVE-2016-5195
Known Exploited	Yes
Exploit Prediction Score	87.94%
Default Action	drop
Active
Affected OS	Linux
Affected App	Other

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Intrusion Prevention

Linux.Kernel.Copy.On.Write.Privilege.Escalation

Description

Affected Products

Impact

Recommended Actions

Telemetry

Coverage

Version Updates

References

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

Intrusion Prevention

Linux.Kernel.Copy.On.Write.Privilege.Escalation

Description

Affected Products

Impact

Recommended Actions

Telemetry

Coverage

Version Updates

References

Threat Intelligence
Center