Lucene search

K

[email protected]NVD:CVE-2009-3288

HistorySep 22, 2009 - 10:30 a.m.

CVE-2009-3288

2009-09-2210:30:00

CWE-119

[email protected]

web.nvd.nist.gov

1

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.9%

The sg_build_indirect function in drivers/scsi/sg.c in Linux kernel 2.6.28-rc1 through 2.6.31-rc8 uses an incorrect variable when accessing an array, which allows local users to cause a denial of service (kernel OOPS and NULL pointer dereference), as demonstrated by using xcdroast to duplicate a CD. NOTE: this is only exploitable by users who can open the cdrom device.

Affected configurations

NVD

Node

kernellinux_kernelMatch2.6.28-rc1

OR

linuxlinux_kernelMatch2.6.31-rc2

OR

linuxlinux_kernelMatch2.6.31-rc3

OR

linuxlinux_kernelMatch2.6.31-rc4

OR

linuxlinux_kernelMatch2.6.31-rc5

OR

linuxlinux_kernelMatch2.6.31-rc6

OR

linuxlinux_kernelMatch2.6.31-rc7

OR

linuxlinux_kernelMatch2.6.31-rc8

OR

linuxlinux_kernelMatch2.6.31-rc9

OR

linuxlinux_kernelMatch2.6.31-rc10

References

lkml.org/lkml/2009/9/3/1

lkml.org/lkml/2009/9/3/107

secunia.com/advisories/37105

www.openwall.com/lists/oss-security/2009/09/03/4

www.ubuntu.com/usn/USN-852-1

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.9%

Related for NVD:CVE-2009-3288

redhatcve1 cvelist1 prion1 cve1 ubuntucve1 seebug1 securityvulns2 nessus1 ubuntu1 openvas1