Lucene search
PRIOn knowledge basePRION:CVE-2013-5666HistorySep 23, 2013 - 8:55 p.m.
Design/Logic Flaw
2013-09-2320:55:00
PRIOn knowledge base
www.prio-n.com
2
6 Medium
AI Score
Confidence
Low
4.7 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:C/I:N/A:N
0.0004 Low
EPSS
Percentile
5.4%
The sendfile system-call implementation in sys/kern/uipc_syscalls.c in the kernel in FreeBSD 9.2-RC1 and 9.2-RC2 does not properly pad transmissions, which allows local users to obtain sensitive information (kernel memory) via a length greater than the length of the file.
Related
freebsd_advisory
freebsd_advisory
FreeBSD-SA-13:11.sendfile
2013-09-10 00:00:00
cvelist
cvelist
CVE-2013-5666
2022-10-03 16:14:55
securityvulns
securityvulns
FreeBSD Security Advisory FreeBSD-SA-13:11.sendfile
2013-09-11 00:00:00
FreeBSD multiple security vulnerabilities
2013-09-11 00:00:00
owncloud
owncloud
Server: XSS vulnerability in bookmarks
2012-12-20 10:42:22
XSS vulnerability in bookmarks - ownCloud
2012-12-20 17:04:22
cve
cve
CVE-2013-5666
2013-09-23 20:55:00
6 Medium
AI Score
Confidence
Low
4.7 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:C/I:N/A:N
0.0004 Low
EPSS
Percentile
5.4%
Related for PRION:CVE-2013-5666