Lucene search
Redhat.comRH:CVE-2008-3911HistoryOct 30, 2015 - 10:14 a.m.
CVE-2008-3911
2015-10-3010:14:14
redhat.com
access.redhat.com
7
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.6
Confidence
High
EPSS
0
Percentile
5.1%
The proc_do_xprt function in net/sunrpc/sysctl.c in the Linux kernel 2.6.26.3 does not check the length of a certain buffer obtained from userspace, which allows local users to overflow a stack-based buffer and have unspecified other impact via a crafted read system call for the /proc/sys/sunrpc/transports file.
Related
cve
cve
CVE-2008-3911
2008-09-04 17:41:00
seebug
seebug
Linux Kernel proc_do_xprt()ε½ζ°ζ¬ε°ζ ζΊ’εΊζΌζ΄
2008-10-31 00:00:00
ubuntucve
ubuntucve
CVE-2008-3911
2008-09-04 00:00:00
cvelist
cvelist
CVE-2008-3911
2008-09-04 17:00:00
prion
prion
Stack overflow
2008-09-04 17:41:00
nvd
nvd
CVE-2008-3911
2008-09-04 17:41:00
nessus
nessus
openSUSE Security Update : kernel (kernel-270)
2009-07-21 00:00:00
openvas
openvas
SuSE Update for kernel SUSE-SA:2008:053
2009-01-23 00:00:00
suse
suse
remote denial of service in kernel
2008-10-27 17:50:21
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.6
Confidence
High
EPSS
0
Percentile
5.1%
Related for RH:CVE-2008-3911