CVE-2012-2313

Exploit

EPSS 0.22%
Published 13.06.2012 10:24:55
Last modified 11.04.2025 00:51:21
Source secalert@redhat.com
Teams watchlist Login
Open Login

The rio_ioctl function in drivers/net/ethernet/dlink/dl2k.c in the Linux kernel before 3.3.7 does not restrict access to the SIOCSMIIREG command, which allows local users to write data to an Ethernet adapter via an ioctl call.

Affected products Warnungen 0 Metrics 2 CWE 0 References 15

Data is provided by the National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version <= 3.3.6

Linux ≫ Linux Kernel Version3.3

Linux ≫ Linux Kernel Version3.3 Updaterc1

Linux ≫ Linux Kernel Version3.3 Updaterc2

Linux ≫ Linux Kernel Version3.3 Updaterc3

Linux ≫ Linux Kernel Version3.3 Updaterc4

Linux ≫ Linux Kernel Version3.3 Updaterc5

Linux ≫ Linux Kernel Version3.3 Updaterc6

Linux ≫ Linux Kernel Version3.3 Updaterc7

Linux ≫ Linux Kernel Version3.3.1

Linux ≫ Linux Kernel Version3.3.2

Linux ≫ Linux Kernel Version3.3.3

Linux ≫ Linux Kernel Version3.3.4

Linux ≫ Linux Kernel Version3.3.5

Novell ≫ Suse Linux Enterprise Server Version10.0 Updatesp4 SwEditionltss

Redhat ≫ Enterprise Linux Version5 Editionserver

Redhat ≫ Enterprise Linux Desktop Version5.0 Editionclient

Redhat ≫ Enterprise Linux Eus Version5.6.z Editionserver

Redhat ≫ Enterprise Linux Long Life Version5.6 Editionserver

Redhat ≫ Enterprise Linux Server Aus Version6.2

Redhat ≫ Enterprise Linux Server Eus Version6.1.z

Redhat ≫ Enterprise Linux Server Eus Version6.2.z

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.22%	0.451

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	1.2	1.9	2.9	AV:L/AC:H/Au:N/C:N/I:N/A:P

http://marc.info/?l=bugtraq&m=139447903326211&w=2

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.html

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2012-1541.html

Third Party Advisory

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1bb57e940e1958e40d51f2078f50c3a96a9b2d75

http://rhn.redhat.com/errata/RHSA-2012-1174.html

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2012-1481.html

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2012-1589.html

Third Party Advisory

http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.3.7

Release Notes

http://www.openwall.com/lists/oss-security/2012/05/04/8

Mailing List

http://www.securityfocus.com/bid/53965

Third Party Advisory

VDB Entry

https://bugzilla.redhat.com/show_bug.cgi?id=818820

Issue Tracking

https://github.com/torvalds/linux/commit/1bb57e940e1958e40d51f2078f50c3a96a9b2d75

Patch

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2012-2313

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2012-2313

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2012-2313

EUVD