Dirty COW Vulnerability

Document ID : KB000011736
Last Modified Date : 14/02/2018
Show Technical Document Details
Question:

1. What is the Dirty COW vulnerability?

 

2. Is CA PAM vulnerable to this type of attack?

Answer:

1. A race condition was found in the way the Linux kernel's memory subsystem handled the copy-on-write (COW) breakage of private read-only memory mappings. An unprivileged local user could use this flaw to gain write access to otherwise read-only memory mappings and thus increase their privileges on the system.

 

2. CA PAM is not vulnerable to this serious attack as the appliance is locked down and users cannot SSH to it. Thus without this access no vulnerabilities can be exploited.