Lucene search

[email protected]CVE-2011-4330

HistoryJan 27, 2012 - 3:55 p.m.

CVE-2011-4330

2012-01-2715:55:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2011-4330

buffer overflow

hfs_mac2asc

denial of service

linux kernel

5.9 Medium

AI Score

Confidence

High

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

Stack-based buffer overflow in the hfs_mac2asc function in fs/hfs/trans.c in the Linux kernel 2.6 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via an HFS image with a crafted len field.

CPENameOperatorVersion
linux:linux_kernellinux linux kernellt3.1.2
linux:linux_kernellinux linux kernellt3.0.10

CPE	Name	Operator	Version
linux:linux_kernel	linux linux kernel	lt	3.1.2
linux:linux_kernel	linux linux kernel	lt	3.0.10

References

git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=bc5b8a9003132ae44559edd63a1623

www.openwall.com/lists/oss-security/2011/11/21/14

www.openwall.com/lists/oss-security/2011/11/21/5

www.securityfocus.com/bid/50750

bugzilla.redhat.com/show_bug.cgi?id=755431

lkml.org/lkml/2011/11/9/303

5.9 Medium

AI Score

Confidence

High

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

Related for CVE-2011-4330

seebug1 ubuntucve1 prion1 veracode1 openvas37 nessus29 ubuntu14 securityvulns2 redhat2 suse4 centos1 oraclelinux3