Lucene search

[email protected]NVD:CVE-2012-2313

HistoryJun 13, 2012 - 10:24 a.m.

CVE-2012-2313

2012-06-1310:24:55

CWE-264

[email protected]

web.nvd.nist.gov

1.2 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:H/Au:N/C:N/I:N/A:P

5.6 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

16.2%

JSON

The rio_ioctl function in drivers/net/ethernet/dlink/dl2k.c in the Linux kernel before 3.3.7 does not restrict access to the SIOCSMIIREG command, which allows local users to write data to an Ethernet adapter via an ioctl call.

Affected configurations

NVD

Node

linuxlinux_kernelRange≤3.3.6

linuxlinux_kernelMatch3.3

linuxlinux_kernelMatch3.3rc1

linuxlinux_kernelMatch3.3rc2

linuxlinux_kernelMatch3.3rc3

linuxlinux_kernelMatch3.3rc4

linuxlinux_kernelMatch3.3rc5

linuxlinux_kernelMatch3.3rc6

linuxlinux_kernelMatch3.3rc7

linuxlinux_kernelMatch3.3.1

linuxlinux_kernelMatch3.3.2

linuxlinux_kernelMatch3.3.3

linuxlinux_kernelMatch3.3.4

linuxlinux_kernelMatch3.3.5

Node

novellsuse_linux_enterprise_serverMatch10.0sp4ltss

Node

redhatenterprise_linuxMatch5server

redhatenterprise_linux_desktopMatch5.0client

redhatenterprise_linux_eusMatch5.6.zserver

redhatenterprise_linux_long_lifeMatch5.6server

redhatenterprise_linux_server_ausMatch6.2

redhatenterprise_linux_server_eusMatch6.1.z

redhatenterprise_linux_server_eusMatch6.2.z

References

git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1bb57e940e1958e40d51f2078f50c3a96a9b2d75

lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.html

marc.info/?l=bugtraq&m=139447903326211&w=2

rhn.redhat.com/errata/RHSA-2012-1174.html

rhn.redhat.com/errata/RHSA-2012-1481.html

rhn.redhat.com/errata/RHSA-2012-1541.html

rhn.redhat.com/errata/RHSA-2012-1589.html

www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.3.7

www.openwall.com/lists/oss-security/2012/05/04/8

www.securityfocus.com/bid/53965

bugzilla.redhat.com/show_bug.cgi?id=818820

github.com/torvalds/linux/commit/1bb57e940e1958e40d51f2078f50c3a96a9b2d75

1.2 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:H/Au:N/C:N/I:N/A:P

5.6 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

16.2%

JSON

Related for NVD:CVE-2012-2313

prion1 openvas41 cve1 nessus39 redhat7 oraclelinux6 cvelist1 centos2 amazon2 debiancve1 ubuntucve1 ubuntu11 securityvulns5 suse3