Lucene search

PRIOn knowledge basePRION:CVE-2013-6435

HistoryDec 16, 2014 - 6:59 p.m.

Race condition

2014-12-1618:59:00

PRIOn knowledge base

www.prio-n.com

7.8 High

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.091 Low

EPSS

Percentile

94.5%

JSON

Race condition in RPM 4.11.1 and earlier allows remote attackers to execute arbitrary code via a crafted RPM file whose installation extracts the contents to temporary files before validating the signature, as demonstrated by installing a file in the /etc/cron.d directory.

CPENameOperatorVersion
debian_linuxeq7.0
rpmeq2.3.5
rpmeq4.4.2.1
rpmeq1.4.3
rpmeq3.0.1
rpmeq4.1
rpmeq2.2.3.11
rpmeq4.8.0
rpmeq2.4.4
rpmeq2.3.8

Name	Operator	Version
debian_linux	eq	7.0
rpm	eq	2.3.5
rpm	eq	4.4.2.1
rpm	eq	1.4.3
rpm	eq	3.0.1
rpm	eq	4.1
rpm	eq	2.2.3.11
rpm	eq	4.8.0
rpm	eq	2.4.4
rpm	eq	2.3.8

Rows per page:

1-10 of 1101

References

advisories.mageia.org/MGASA-2014-0529.html

kb.juniper.net/InfoCenter/index?page=content&id=JSA10705

rhn.redhat.com/errata/RHSA-2014-1974.html

rhn.redhat.com/errata/RHSA-2014-1975.html

rhn.redhat.com/errata/RHSA-2014-1976.html

www.debian.org/security/2015/dsa-3129

www.mandriva.com/security/advisories?name=MDVSA-2014:251

www.mandriva.com/security/advisories?name=MDVSA-2015:056

www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html

www.securityfocus.com/bid/71558

bugzilla.redhat.com/show_bug.cgi?id=1039811

security.gentoo.org/glsa/201811-22

securityblog.redhat.com/2014/12/10/analysis-of-the-cve-2013-6435-flaw-in-rpm/

7.8 High

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.091 Low

EPSS

Percentile

94.5%

JSON

Related for PRION:CVE-2013-6435