Svi
Pretraži prema proizvođaču
Pretraži prema CWE oznaci
O usluzi
Pretplate
Jezik
hr
en
CVE-2014-0930 - CERT CVE
CVE-2014-0930
ID
CVE-2014-0930
Sažetak
The ptrace system call in IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.2.x, allows local users to cause a denial of service (system crash) or obtain sensitive information from kernel memory via a crafted PT_LDINFO operation.
Reference
http://www.ibm.com/support/docview.wss?uid=isg1IV58948
http://www.ibm.com/support/docview.wss?uid=isg1IV58840
http://www.ibm.com/support/docview.wss?uid=isg1IV59045
http://archives.neohapsis.com/archives/bugtraq/2014-05/0031.html
http://www.ibm.com/support/docview.wss?uid=isg1IV58861
http://www.ibm.com/support/docview.wss?uid=isg1IV58888
http://www.ibm.com/support/docview.wss?uid=isg1IV59675
http://www.ibm.com/support/docview.wss?uid=isg1IV58766
https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-0930/
http://aix.software.ibm.com/aix/efixes/security/ptrace_advisory.asc
https://exchange.xforce.ibmcloud.com/vulnerabilities/92262
CVSS
Base:
4.7
Impact:
6.9
Exploitability:
3.4
Pristup
Vektor
Složenost
Autentikacija
LOCAL
MEDIUM
NONE
Impact
Povjerljivost
Cjelovitost
Dostupnost
NONE
NONE
COMPLETE
CVSS vektor
AV:L/AC:M/Au:N/C:N/I:N/A:C
Zadnje važnije ažuriranje
31-08-2021 - 15:44
Objavljeno
08-05-2014 - 10:55