Lucene search

[email protected]NVD:CVE-2014-0004

HistoryMar 11, 2014 - 7:37 p.m.

CVE-2014-0004

2014-03-1119:37:03

CWE-119

[email protected]

web.nvd.nist.gov

6.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

7.3 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Stack-based buffer overflow in udisks before 1.0.5 and 2.x before 2.1.3 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a long mount point.

Affected configurations

NVD

Node

freedesktopudisksRange≤1.0.4

freedesktopudisksMatch1.0

freedesktopudisksMatch1.0.1

freedesktopudisksMatch2.0.0

freedesktopudisksMatch2.0.1

freedesktopudisksMatch2.0.90

freedesktopudisksMatch2.0.91

freedesktopudisksMatch2.0.92

freedesktopudisksMatch2.1.0

freedesktopudisksMatch2.1.1

freedesktopudisksMatch2.1.2

Node

canonicalubuntu_linuxMatch12.04-lts

canonicalubuntu_linuxMatch12.10

canonicalubuntu_linuxMatch13.10

References

lists.freedesktop.org/archives/devkit-devel/2014-March/001568.html

lists.opensuse.org/opensuse-updates/2014-03/msg00051.html

lists.opensuse.org/opensuse-updates/2014-03/msg00052.html

lists.opensuse.org/opensuse-updates/2014-03/msg00053.html

rhn.redhat.com/errata/RHSA-2014-0293.html

www.debian.org/security/2014/dsa-2872

www.securityfocus.com/bid/66081

www.ubuntu.com/usn/USN-2142-1

6.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

7.3 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2014-0004

nessus16 openvas20 slackware1 securityvulns2 cvelist1 redhat1 fedora4 oraclelinux1 ubuntucve1 mageia1 veracode1 gentoo1 centos1 debian1 cve1 seebug1 ubuntu1 debiancve1 osv1 prion1