Lucene search
HistoryJul 15, 2014 - 2:55 p.m.
CVE-2014-3952
4.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:C/I:N/A:N
5.7 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
FreeBSD 8.4 before p14, 9.1 before p17, 9.2 before p10, and 10.0 before p7 does not properly initialize the buffer between the header and data of a control message, which allows local users to obtain sensitive information from kernel memory via unspecified vectors.
Affected configurations
Node
freebsdfreebsdMatch8.4
ORfreebsdfreebsdMatch9.1
ORfreebsdfreebsdMatch9.2-
ORfreebsdfreebsdMatch10.0
Related
debiancve
debiancve
CVE-2014-3952
2014-07-15 14:55:09
cvelist
cvelist
CVE-2014-3952
2014-07-15 14:00:00
cve
cve
CVE-2014-3952
2014-07-15 14:55:09
prion
prion
Design/Logic Flaw
2014-07-15 14:55:00
freebsd
freebsd
FreeBSD -- Kernel memory disclosure in control messages and SCTP
2014-07-08 00:00:00
nessus
nessus
securityvulns
securityvulns
FreeBSD information leakage
2014-07-14 00:00:00
FreeBSD Security Advisory FreeBSD-SA-14:17.kmem
2014-07-14 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-14:17.kmem
2014-07-08 00:00:00
debian
debian
[SECURITY] [DSA 3070-1] kfreebsd-9 security update
2014-11-07 17:54:56
osv
osv
kfreebsd-9 - security update
2014-11-07 00:00:00
openvas
openvas
Debian Security Advisory DSA 3070-1 (kfreebsd-9 - security update)
2014-11-07 00:00:00
Debian: Security Advisory (DSA-3070-1)
2014-11-06 00:00:00
4.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:C/I:N/A:N
5.7 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for NVD:CVE-2014-3952