Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2013-5691
HistorySep 23, 2013 - 10:18 a.m.

CVE-2013-5691

2013-09-2310:18:59
CWE-264
[email protected]
web.nvd.nist.gov
26
freebsd
kernel
denial of service
privilege escalation
cve-2013-5691

6.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

6.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

The (1) IPv6 and (2) ATM ioctl request handlers in the kernel in FreeBSD 8.3 through 9.2-STABLE do not validate SIOCSIFADDR, SIOCSIFBRDADDR, SIOCSIFDSTADDR, and SIOCSIFNETMASK requests, which allows local users to perform link-layer actions, cause a denial of service (panic), or possibly gain privileges via a crafted application.

Affected configurations

NVD
Node
freebsdfreebsdMatch8.3
OR
freebsdfreebsdMatch9.0
OR
freebsdfreebsdMatch9.1
OR
freebsdfreebsdMatch9.2

Related

freebsd_advisory 1
nvd 1
nessus 2
freebsd 1
prion 1
securityvulns 2
cvelist 1
osv 1
openvas 2
debian 2
freebsd_advisory
freebsd_advisory
FreeBSD-SA-13:12.ifioctl
2013-09-10 00:00:00
nvd
nvd
CVE-2013-5691
2013-09-23 10:18:59
nessus
nessus
FreeBSD : FreeBSD -- Insufficient credential checks in network ioctl(2) (4d87d357-202c-11e3-be06-000c29ee3065)
2013-10-02 00:00:00
Debian DSA-2769-1 : kfreebsd-9 - privilege escalation/denial of service
2013-10-10 00:00:00
freebsd
freebsd
FreeBSD -- Insufficient credential checks in network ioctl(2)
2013-09-10 00:00:00
prion
prion
Design/Logic Flaw
2013-09-23 10:18:00
securityvulns
securityvulns
FreeBSD Security Advisory FreeBSD-SA-13:12.ifioctl
2013-09-11 00:00:00
FreeBSD multiple security vulnerabilities
2013-09-11 00:00:00
cvelist
cvelist
CVE-2013-5691
2013-09-23 10:00:00
osv
osv
kfreebsd-9 - several
2013-10-08 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-2769-1)
2013-10-07 00:00:00
Debian Security Advisory DSA 2769-1 (kfreebsd-9 - privilege escalation/denial of service)
2013-10-08 00:00:00
debian
debian
[SECURITY] [DSA-2769-1] kfreebsd-9 security update
2013-10-08 14:20:48
[SECURITY] [DSA-2769-1] kfreebsd-9 security update
2013-10-08 14:20:48

6.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

6.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for CVE-2013-5691
freebsd_advisory1nvd1nessus2freebsd1prion1securityvulns2cvelist1osv1openvas2debian2