Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2014-5439

Опубликовано: 19 нояб. 2019
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 9.3
CVSS3: 7.8

Описание

Multiple Stack-based Buffer Overflow vulnerabilities exists in Sniffit prior to 0.3.7 via a crafted configuration file that will bypass Non-eXecutable bit NX, stack smashing protector SSP, and address space layout randomization ASLR protection mechanisms, which could let a malicious user execute arbitrary code.

РелизСтатусПримечание
artful

not-affected

0.3.7.beta-20
bionic

not-affected

0.3.7.beta-20
cosmic

not-affected

0.3.7.beta-20
devel

not-affected

0.3.7.beta-20
disco

not-affected

0.3.7.beta-20
eoan

not-affected

0.3.7.beta-20
esm-apps/bionic

not-affected

0.3.7.beta-20
esm-apps/focal

not-affected

0.3.7.beta-20
esm-apps/xenial

released

0.3.7.beta-19ubuntu0.1
esm-infra-legacy/trusty

released

0.3.7.beta-17+deb8u1build0.14.04.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 62%
0.00422
Низкий

9.3 Critical

CVSS2

7.8 High

CVSS3

Связанные уязвимости

nvd логотип

CVE-2014-5439

CVSS3: 7.8
nvd
около 6 лет назад

Multiple Stack-based Buffer Overflow vulnerabilities exists in Sniffit prior to 0.3.7 via a crafted configuration file that will bypass Non-eXecutable bit NX, stack smashing protector SSP, and address space layout randomization ASLR protection mechanisms, which could let a malicious user execute arbitrary code.

debian логотип

CVE-2014-5439

CVSS3: 7.8
debian
около 6 лет назад

Multiple Stack-based Buffer Overflow vulnerabilities exists in Sniffit ...

github логотип

GHSA-p45p-3fx5-h8qr

CVSS3: 7.8
github
больше 3 лет назад

sniffit 0.3.7 and prior: A configuration file can be leveraged to execute code as root

EPSS

Процентиль: 62%
0.00422
Низкий

9.3 Critical

CVSS2

7.8 High

CVSS3