Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2013-3949
HistoryJun 05, 2013 - 10:00 a.m.

CVE-2013-3949

2013-06-0510:00:00
mitre
www.cve.org
5
cve-2013-3949
xnu kernel
apple mac os x 10.8.x
posix_spawn
access restrictions
wrapper program
posix_spawnattr_setflags

AI Score

5.8

Confidence

Low

EPSS

0

Percentile

5.1%

JSON

The posix_spawn system call in the XNU kernel in Apple Mac OS X 10.8.x does not prevent use of the _POSIX_SPAWN_DISABLE_ASLR and _POSIX_SPAWN_ALLOW_DATA_EXEC flags for setuid and setgid programs, which allows local users to bypass intended access restrictions via a wrapper program that calls the posix_spawnattr_setflags function.

Related

nvd 1
prion 1
cve 1
openvas 1
nvd
nvd
CVE-2013-3949
2013-06-05 14:39:55
prion
prion
Design/Logic Flaw
2013-06-05 14:39:00
cve
cve
CVE-2013-3949
2013-06-05 14:39:55
openvas
openvas
Apple Mac OS X Multiple Vulnerabilities - 01 (Jan 2014)
2014-01-20 00:00:00

AI Score

5.8

Confidence

Low

EPSS

0

Percentile

5.1%

JSON
Related for CVELIST:CVE-2013-3949
nvd1prion1cve1openvas1