Lucene search
K

657 matches found

CVE
CVE
added 2012/09/15 5:0 p.m.53 views

CVE-2011-5174

CVE-2011-5174 : A buffer overflow in Intel Trusted Execution Technology (TXT) SINIT Authenticated Code Modules (ACM) affects multiple Intel chipsets (Q67, Q57, Q35, QM/QS variants, GM/PM/GS families, X58/5520/5500/7500, etc.) and their associated SINIT ACM binaries (e.g., 51.BIN variants). The ro...

7.2CVSS6.9AI score0.00456EPSS
Exploits0References5Affected Software7
Cvelist
Cvelist
added 2012/09/15 5:0 p.m.23 views

CVE-2011-5174

Buffer overflow in Intel Trusted Execution Technology TXT SINIT Authenticated Code Modules ACM in Intel Q67 Express, C202, C204, C206 Chipsets, and Mobile Intel QM67, and QS67 Chipset before 2ndgeni5i7SINIT51.BIN Express; Intel Q57, 3450 Chipsets and Mobile Intel QM57 and QS57 Express Chipset...

6.7AI score0.00456EPSS
Exploits0References5
Intel
Intel
added 2011/12/06 12:0 a.m.15 views

SINIT Buffer Overflow Vulnerability

Summary: Intel® Trusted Execution Technology SINIT Authenticated Code Modules ACMs are susceptible to a buffer overflow issue. Intel is providing updated SINIT ACMs to mitigate this issue and microcode updates to revoke vulnerable SINIT ACMs. Description: When Intel® Trusted Execution Technology...

7.5AI score
Exploits0
Prion
Prion
added 2009/12/24 5:30 p.m.13 views

Design/Logic Flaw

Intel Q35, GM45, PM45 Express, Q45, and Q43 Express chipsets in the SINIT Authenticated Code Module ACM, which allows local users to bypass the Trusted Execution Technology protection mechanism and gain privileges by modifying the MCHBAR register to point to an attacker-controlled region, which...

7.2CVSS7.3AI score0.00427EPSS
Exploits0References9
Cvelist
Cvelist
added 2009/12/24 5:0 p.m.21 views

CVE-2009-4419

Intel Q35, GM45, PM45 Express, Q45, and Q43 Express chipsets in the SINIT Authenticated Code Module ACM, which allows local users to bypass the Trusted Execution Technology protection mechanism and gain privileges by modifying the MCHBAR register to point to an attacker-controlled region, which...

6.8AI score0.00427EPSS
Exploits0References9
Intel
Intel
added 2009/12/21 12:0 a.m.17 views

SINIT misconfiguration allows for Privilege Escalation

Summary: An updated SINIT Authenticated Code Module ACM is available for affected Intel products to correct a misconfiguration that allows for the circumvention of Intel® Trusted Execution Technology. Description: A misconfiguration in SINIT code could potentially allow a malicious attacker to...

7.3AI score
Exploits0
Prion
Prion
added 2009/01/07 7:30 p.m.11 views

Design/Logic Flaw

Multiple unspecified vulnerabilities in Intel system software for Trusted Execution Technology TXT allow attackers to bypass intended loader integrity protections, as demonstrated by exploitation of tboot. NOTE: as of 20090107, the only disclosure is a vague pre-advisory with no actionable...

7.6CVSS7.4AI score0.02194EPSS
Exploits0References4
NVD
NVD
added 2009/01/07 7:30 p.m.10 views

CVE-2009-0066

Multiple unspecified vulnerabilities in Intel system software for Trusted Execution Technology TXT allow attackers to bypass intended loader integrity protections, as demonstrated by exploitation of tboot. NOTE: as of 20090107, the only disclosure is a vague pre-advisory with no actionable...

7.6CVSS6.9AI score0.02194EPSS
Exploits0References4
CVE
CVE
added 2009/01/07 7:0 p.m.60 views

CVE-2009-0066

Technical details for CVE-2009-0066 are not publicly available in the provided documents; no concrete information on affected products, components, root cause, impact, or remediation is present. Monitor for updates.

7.6CVSS7AI score0.02194EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2008/03/31 11:44 p.m.24 views

CVE-2008-1596

Trusted Execution in IBM AIX 6.1 uses an incorrect pathname argument in a call to the trustchkblockwrite function, which might allow local users to modify trusted files, related to missing checks in the TSDFILESLOCK policy for modifications performed via hard links, a different vulnerability than...

7.2CVSS6.1AI score0.0039EPSS
Exploits0References7
Prion
Prion
added 2008/03/31 11:44 p.m.18 views

Hardcoded credentials

Trusted Execution in IBM AIX 6.1 uses an incorrect pathname argument in a call to the trustchkblockwrite function, which might allow local users to modify trusted files, related to missing checks in the TSDFILESLOCK policy for modifications performed via hard links, a different vulnerability than...

7.2CVSS6.4AI score0.0039EPSS
Exploits0References7Affected Software1
CVE
CVE
added 2008/03/31 11:0 p.m.48 views

CVE-2008-1596

CVE-2008-1596 affects IBM AIX 6.1 Trusted Execution. The issue is an incorrect pathname argument passed to trustchk_block_write, tied to missing checks in the TSD_FILES_LOCK policy for hard-link modifications. This could allow local users to modify trusted files; the vulnerability family is relat...

7.2CVSS6.2AI score0.0039EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2008/03/31 11:0 p.m.23 views

CVE-2008-1596

Trusted Execution in IBM AIX 6.1 uses an incorrect pathname argument in a call to the trustchkblockwrite function, which might allow local users to modify trusted files, related to missing checks in the TSDFILESLOCK policy for modifications performed via hard links, a different vulnerability than...

6.1AI score0.0039EPSS
Exploits0References7
Prion
Prion
added 2008/01/10 11:46 p.m.17 views

Code injection

Trusted Execution in IBM AIX 6.1 uses an incorrect pathname argument in a call to the trustchkblockwrite function, which might allow local users to modify trusted files, related to an error in the support for links in the TSDFILESLOCK policy...

2.1CVSS6.4AI score0.00367EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2008/01/10 11:46 p.m.22 views

CVE-2007-6680

Trusted Execution in IBM AIX 6.1 uses an incorrect pathname argument in a call to the trustchkblockwrite function, which might allow local users to modify trusted files, related to an error in the support for links in the TSDFILESLOCK policy...

2.1CVSS6.1AI score0.00367EPSS
Exploits0References5
CVE
CVE
added 2008/01/10 11:0 p.m.55 views

CVE-2007-6680

CVE-2007-6680 affects IBM AIX 6.1 Trusted Execution. The issue is an incorrect pathname argument in a call to trustchk_block_write, related to the TSD_FILES_LOCK policy, which may allow local users to modify trusted files. Impact is limited to local privilege escalation/modification rights as des...

2.1CVSS6.1AI score0.00367EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2008/01/10 11:0 p.m.27 views

CVE-2007-6680

Trusted Execution in IBM AIX 6.1 uses an incorrect pathname argument in a call to the trustchkblockwrite function, which might allow local users to modify trusted files, related to an error in the support for links in the TSDFILESLOCK policy...

6.1AI score0.00367EPSS
Exploits0References5
Rows per page
Query Builder