Anfälligkeitssuche        Suche in 172616 CVE Beschreibungen
und 81291 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.901043
Kategorie:Denial of Service
Titel:SystemTap Unprivileged Mode Multiple Denial Of Service Vulnerabilities
Zusammenfassung:This host has SystemTap installed and is prone to multiple Denial of; Service vulnerabilities.
Beschreibung:Summary:
This host has SystemTap installed and is prone to multiple Denial of
Service vulnerabilities.

Vulnerability Insight:
Multiple errors occur when SystemTap is running in 'unprivileged' mode.

- Error within the handling of the unwind table and CIE/CFI records

- A buffer overflow error when processing a long number of parameters

- A stack overflow when processing DWARF information

Vulnerability Impact:
Attackers can exploit this issue to execute arbitrary code and cause a denial
of service or compromise a vulnerable system.

Affected Software/OS:
SystemTap version 1.0 and prior.

Solution:
Apply the patch from the referenced bugzilla attachments.

CVSS Score:
1.9

CVSS Vector:
AV:L/AC:M/Au:N/C:N/I:N/A:P

Querverweis: BugTraq ID: 36778
Common Vulnerability Exposure (CVE) ID: CVE-2009-2911
http://www.securityfocus.com/bid/36778
https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00627.html
https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00793.html
http://gcc.gnu.org/bugzilla/show_bug.cgi?id=41633
http://www.openwall.com/lists/oss-security/2009/10/21/1
http://secunia.com/advisories/37167
http://www.vupen.com/english/advisories/2009/2989
CopyrightCopyright (C) 2009 SecPod

Dies ist nur einer von 81291 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.