Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:23901
HistoryApr 10, 2020 - 12:39 a.m.

Denial Of Service (DoS)

2020-04-1000:39:31
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11

4.7 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:N/I:N/A:C

JSON

The kernel packages is vulnerable to Denial of Service (DoS). A NULL pointer dereference flaw was found in the firewire-ohci driver used for OHCI compliant IEEE 1394 controllers. A local, unprivileged user with access to /dev/fw* files could issue certain IOCTL calls, causing a denial of service or privilege escalation. The FireWire modules are blacklisted by default, and if enabled, only root has access to the files noted above by default.

References

Related

prion 1
seebug 1
ubuntucve 1
cve 1
nessus 13
suse 3
openvas 16
redhat 3
centos 1
oraclelinux 2
ubuntu 1
osv 1
debian 1
vmware 2
prion
prion
Null pointer dereference
2009-12-16 19:30:00
seebug
seebug
Linux Kernel 'drivers/firewire/ohci.c'η©ΊζŒ‡ι’ˆεΌ•η”¨ζ‹’η»ζœεŠ‘ζΌζ΄ž
2009-12-17 00:00:00
ubuntucve
ubuntucve
CVE-2009-4138
2009-12-16 00:00:00
cve
cve
CVE-2009-4138
2009-12-16 19:30:00
nessus
nessus
SuSE 11 Security Update : Linux kernel (SAT Patch Number 1753)
2011-03-17 00:00:00
SuSE 11 Security Update : Linux kernel (SAT Patch Numbers 1754 / 1760)
2010-01-15 00:00:00
openSUSE Security Update : kernel (kernel-1749)
2010-01-15 00:00:00
suse
suse
remote code execution in kernel
2010-01-15 15:06:43
remote denial of service in kernel
2010-01-07 17:51:27
local privilege escalation, remote denial of in kernel
2010-02-15 16:54:24
openvas
openvas
SuSE Update for kernel SUSE-SA:2010:005
2010-01-20 00:00:00
SuSE Update for kernel SUSE-SA:2010:005
2010-01-20 00:00:00
CentOS Update for kernel CESA-2010:0046 centos5 i386
2011-08-09 00:00:00
redhat
redhat
(RHSA-2010:0046) Important: kernel security and bug fix update
2010-01-19 00:00:00
(RHSA-2010:0631) Important: kernel-rt security and bug fix update
2010-08-17 00:00:00
(RHSA-2010:0095) Important: rhev-hypervisor security and bug fix update
2010-02-09 00:00:00
centos
centos
kernel security update
2010-01-20 18:10:39
oraclelinux
oraclelinux
kernel security and bug fix update
2010-01-20 00:00:00
Oracle Enterprise Linux 5.5 kernel security and bug fix update
2010-04-05 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2010-02-05 00:00:00
osv
osv
linux-2.6.24 - several vulnerabilities
2010-02-27 00:00:00
debian
debian
[SECURITY] [DSA 2004-1] New Linux 2.6.24 packages fix several vulnerabilities
2010-03-01 03:53:30
vmware
vmware
ESXi utilities and ESX Service Console third party updates
2010-05-27 00:00:00
ESXi utilities and ESX Service Console third party updates
2010-05-27 00:00:00

4.7 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:N/I:N/A:C

JSON
Related for VERACODE:23901
prion1seebug1ubuntucve1cve1nessus13suse3openvas16redhat3centos1oraclelinux2ubuntu1osv1debian1vmware2