Lucene search

PRIOn knowledge basePRION:CVE-2014-0930

HistoryMay 08, 2014 - 10:55 a.m.

Code injection

2014-05-0810:55:00

PRIOn knowledge base

www.prio-n.com

6.4 Medium

AI Score

Confidence

Low

4.7 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:N/I:N/A:C

0.0004 Low

EPSS

Percentile

5.4%

JSON

The ptrace system call in IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.2.x, allows local users to cause a denial of service (system crash) or obtain sensitive information from kernel memory via a crafted PT_LDINFO operation.

CPENameOperatorVersion
aixeq5.3
aixeq7.1
aixeq6.1
vioseq2.2.0.13
vioseq2.2.1.0
vioseq2.2.0.11
vioseq2.2.0.12
vioseq2.2.1.1
vioseq2.2.1.3
vioseq2.2.0.10

Name	Operator	Version
aix	eq	5.3
aix	eq	7.1
aix	eq	6.1
vios	eq	2.2.0.13
vios	eq	2.2.1.0
vios	eq	2.2.0.11
vios	eq	2.2.0.12
vios	eq	2.2.1.1
vios	eq	2.2.1.3
vios	eq	2.2.0.10

Rows per page:

1-10 of 131

References

aix.software.ibm.com/aix/efixes/security/ptrace_advisory.asc

archives.neohapsis.com/archives/bugtraq/2014-05/0031.html

www.ibm.com/support/docview.wss?uid=isg1IV58766

www.ibm.com/support/docview.wss?uid=isg1IV58840

www.ibm.com/support/docview.wss?uid=isg1IV58861

www.ibm.com/support/docview.wss?uid=isg1IV58888

www.ibm.com/support/docview.wss?uid=isg1IV58948

www.ibm.com/support/docview.wss?uid=isg1IV59045

www.ibm.com/support/docview.wss?uid=isg1IV59675

exchange.xforce.ibmcloud.com/vulnerabilities/92262

www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-0930/

6.4 Medium

AI Score

Confidence

Low

4.7 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:N/I:N/A:C

0.0004 Low

EPSS

Percentile

5.4%

JSON

Related for PRION:CVE-2014-0930