Lucene search
Ubuntu.comUB:CVE-2014-8476HistoryNov 13, 2014 - 12:00 a.m.
CVE-2014-8476
2014-11-1300:00:00
ubuntu.com
ubuntu.com
5
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.0004 Low
EPSS
Percentile
5.1%
The setlogin function in FreeBSD 8.4 through 10.1-RC4 does not initialize
the buffer used to store the login name, which allows local users to obtain
sensitive information from kernel memory via a call to getlogin, which
returns the entire buffer.
Bugs
Related
securityvulns
securityvulns
FreeBSD information leakage
2014-11-10 00:00:00
FreeBSD Security Advisory FreeBSD-SA-14:25.setlogin
2014-11-10 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-14:25.setlogin
2014-11-04 00:00:00
nvd
nvd
CVE-2014-8476
2014-11-13 21:32:07
prion
prion
Buffer overflow
2014-11-13 21:32:00
freebsd
freebsd
FreeBSD -- Kernel stack disclosure in setlogin(2) / getlogin(2)
2014-11-04 00:00:00
nessus
nessus
debiancve
debiancve
CVE-2014-8476
2014-11-13 21:32:07
cvelist
cvelist
CVE-2014-8476
2014-11-13 15:00:00
cve
cve
CVE-2014-8476
2014-11-13 21:32:07
debian
debian
[SECURITY] [DSA 3070-1] kfreebsd-9 security update
2014-11-07 17:54:56
osv
osv
kfreebsd-9 - security update
2014-11-07 00:00:00
openvas
openvas
Debian Security Advisory DSA 3070-1 (kfreebsd-9 - security update)
2014-11-07 00:00:00
Debian: Security Advisory (DSA-3070-1)
2014-11-06 00:00:00
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.0004 Low
EPSS
Percentile
5.1%
Related for UB:CVE-2014-8476