4.7
CVE-2014-0930
- EPSS 0.47%
- Veröffentlicht 08.05.2014 10:55:03
- Zuletzt bearbeitet 06.05.2026 22:30:45
- Quelle psirt@us.ibm.com
- CVE-Watchlists
- Unerledigt
The ptrace system call in IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.2.x, allows local users to cause a denial of service (system crash) or obtain sensitive information from kernel memory via a crafted PT_LDINFO operation.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.47% | 0.369 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.7 | 3.4 | 6.9 |
AV:L/AC:M/Au:N/C:N/I:N/A:C
|
http://aix.software.ibm.com/aix/efixes/security/ptrace_advisory.asc
http://archives.neohapsis.com/archives/bugtraq/2014-05/0031.html
http://www.ibm.com/support/docview.wss?uid=isg1IV58766
http://www.ibm.com/support/docview.wss?uid=isg1IV58840
http://www.ibm.com/support/docview.wss?uid=isg1IV58861
http://www.ibm.com/support/docview.wss?uid=isg1IV58888
http://www.ibm.com/support/docview.wss?uid=isg1IV58948
http://www.ibm.com/support/docview.wss?uid=isg1IV59045
http://www.ibm.com/support/docview.wss?uid=isg1IV59675
https://exchange.xforce.ibmcloud.com/vulnerabilities/92262
https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-0930/