Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2009-0036
HistoryFeb 11, 2009 - 12:00 a.m.

CVE-2009-0036

2009-02-1100:00:00
ubuntu.com
ubuntu.com
12

CVSS2

4.4

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

EPSS

0

Percentile

10.3%

JSON

Buffer overflow in the proxyReadClientSocket function in
proxy/libvirt_proxy.c in libvirt_proxy 0.5.1 might allow local users to
gain privileges by sending a portion of the header of a virProxyPacket
packet, and then sending the remainder of the packet with crafted values in
the header, related to use of uninitialized memory in a validation check.

Notes

Author Note
jdstrand code exists but is not compiled on Ubuntu

Related

debiancve 1
prion 1
seebug 3
veracode 1
cvelist 1
zdt 1
cve 1
exploitpack 1
exploitdb 1
nvd 1
openvas 3
nessus 3
redhat 1
oraclelinux 1
debiancve
debiancve
CVE-2009-0036
2009-02-11 20:30:00
prion
prion
Buffer overflow
2009-02-11 20:30:00
seebug
seebug
libvirt libvirt_proxy.cζ–‡δ»Άζœ¬εœ°ζ ˆζΊ’ε‡ΊζΌζ΄ž
2009-02-13 00:00:00
libvirt_proxy <= 0.5.1 - Local Privilege Escalation Exploit
2014-07-01 00:00:00
libvirt_proxy &lt;= 0.5.1 Local Privilege Escalation Exploit
2009-04-28 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:30:41
cvelist
cvelist
CVE-2009-0036
2009-02-11 20:00:00
zdt
zdt
libvirt_proxy <= 0.5.1 Local Privilege Escalation Exploit
2009-04-27 00:00:00
cve
cve
CVE-2009-0036
2009-02-11 20:30:00
exploitpack
exploitpack
libvirt_proxy 0.5.1 - Local Privilege Escalation
2009-04-27 00:00:00
exploitdb
exploitdb
libvirt_proxy 0.5.1 - Local Privilege Escalation
2009-04-27 00:00:00
nvd
nvd
CVE-2009-0036
2009-02-11 20:30:00
openvas
openvas
RedHat Security Advisory RHSA-2009:0382
2009-03-20 00:00:00
Oracle: Security Advisory (ELSA-2009-0382)
2015-10-08 00:00:00
RedHat Security Advisory RHSA-2009:0382
2009-03-20 00:00:00
nessus
nessus
Oracle Linux 5 : libvirt (ELSA-2009-0382)
2013-07-12 00:00:00
Scientific Linux Security Update : libvirt on SL5.x i386/x86_64
2012-08-01 00:00:00
RHEL 5 : libvirt (RHSA-2009:0382)
2013-01-24 00:00:00
redhat
redhat
(RHSA-2009:0382) Moderate: libvirt security update
2009-03-19 00:00:00
oraclelinux
oraclelinux
libvirt security update
2009-03-19 00:00:00

CVSS2

4.4

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

EPSS

0

Percentile

10.3%

JSON
Related for UB:CVE-2009-0036
debiancve1prion1seebug3veracode1cvelist1zdt1cve1exploitpack1exploitdb1nvd1openvas3nessus3redhat1oraclelinux1