Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
Vulnerability Details :

CVE-2014-0930

Summary
Assigner-ibm
Assigner Org ID-9a959283-ebb5-44b6-b705-dcc2bbced522
Published At-08 May, 2014 | 10:00
Updated At-06 Aug, 2024 | 09:34
Rejected At-
Credits

The ptrace system call in IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.2.x, allows local users to cause a denial of service (system crash) or obtain sensitive information from kernel memory via a crafted PT_LDINFO operation.

Vendors
-
Not available
Products
-
Metrics (CVSS)
VersionBase scoreBase severityVector
Weaknesses
Attack Patterns
Solution/Workaround
References
HyperlinkResource Type
EPSS History
Score
Latest Score
-
N/A
No data available for selected date range
Percentile
Latest Percentile
-
N/A
No data available for selected date range
Stakeholder-Specific Vulnerability Categorization (SSVC)
▼Common Vulnerabilities and Exposures (CVE)
cve.org
Assigner:ibm
Assigner Org ID:9a959283-ebb5-44b6-b705-dcc2bbced522
Published At:08 May, 2014 | 10:00
Updated At:06 Aug, 2024 | 09:34
Rejected At:
▼CVE Numbering Authority (CNA)

The ptrace system call in IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.2.x, allows local users to cause a denial of service (system crash) or obtain sensitive information from kernel memory via a crafted PT_LDINFO operation.

Affected Products
Vendor
n/a
Product
n/a
Versions
Affected
  • n/a
Problem Types
TypeCWE IDDescription
textN/An/a
Type: text
CWE ID: N/A
Description: n/a
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
http://www.ibm.com/support/docview.wss?uid=isg1IV59675
vendor-advisory
x_refsource_AIXAPAR
https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-0930/
x_refsource_MISC
http://www.ibm.com/support/docview.wss?uid=isg1IV59045
vendor-advisory
x_refsource_AIXAPAR
http://archives.neohapsis.com/archives/bugtraq/2014-05/0031.html
mailing-list
x_refsource_BUGTRAQ
http://www.ibm.com/support/docview.wss?uid=isg1IV58766
vendor-advisory
x_refsource_AIXAPAR
http://www.ibm.com/support/docview.wss?uid=isg1IV58888
vendor-advisory
x_refsource_AIXAPAR
http://www.ibm.com/support/docview.wss?uid=isg1IV58948
vendor-advisory
x_refsource_AIXAPAR
https://exchange.xforce.ibmcloud.com/vulnerabilities/92262
vdb-entry
x_refsource_XF
http://www.ibm.com/support/docview.wss?uid=isg1IV58861
vendor-advisory
x_refsource_AIXAPAR
http://www.ibm.com/support/docview.wss?uid=isg1IV58840
vendor-advisory
x_refsource_AIXAPAR
http://aix.software.ibm.com/aix/efixes/security/ptrace_advisory.asc
x_refsource_CONFIRM
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV59675
Resource:
vendor-advisory
x_refsource_AIXAPAR
Hyperlink: https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-0930/
Resource:
x_refsource_MISC
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV59045
Resource:
vendor-advisory
x_refsource_AIXAPAR
Hyperlink: http://archives.neohapsis.com/archives/bugtraq/2014-05/0031.html
Resource:
mailing-list
x_refsource_BUGTRAQ
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV58766
Resource:
vendor-advisory
x_refsource_AIXAPAR
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV58888
Resource:
vendor-advisory
x_refsource_AIXAPAR
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV58948
Resource:
vendor-advisory
x_refsource_AIXAPAR
Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/92262
Resource:
vdb-entry
x_refsource_XF
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV58861
Resource:
vendor-advisory
x_refsource_AIXAPAR
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV58840
Resource:
vendor-advisory
x_refsource_AIXAPAR
Hyperlink: http://aix.software.ibm.com/aix/efixes/security/ptrace_advisory.asc
Resource:
x_refsource_CONFIRM
▼Authorized Data Publishers (ADP)
CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
http://www.ibm.com/support/docview.wss?uid=isg1IV59675
vendor-advisory
x_refsource_AIXAPAR
x_transferred
https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-0930/
x_refsource_MISC
x_transferred
http://www.ibm.com/support/docview.wss?uid=isg1IV59045
vendor-advisory
x_refsource_AIXAPAR
x_transferred
http://archives.neohapsis.com/archives/bugtraq/2014-05/0031.html
mailing-list
x_refsource_BUGTRAQ
x_transferred
http://www.ibm.com/support/docview.wss?uid=isg1IV58766
vendor-advisory
x_refsource_AIXAPAR
x_transferred
http://www.ibm.com/support/docview.wss?uid=isg1IV58888
vendor-advisory
x_refsource_AIXAPAR
x_transferred
http://www.ibm.com/support/docview.wss?uid=isg1IV58948
vendor-advisory
x_refsource_AIXAPAR
x_transferred
https://exchange.xforce.ibmcloud.com/vulnerabilities/92262
vdb-entry
x_refsource_XF
x_transferred
http://www.ibm.com/support/docview.wss?uid=isg1IV58861
vendor-advisory
x_refsource_AIXAPAR
x_transferred
http://www.ibm.com/support/docview.wss?uid=isg1IV58840
vendor-advisory
x_refsource_AIXAPAR
x_transferred
http://aix.software.ibm.com/aix/efixes/security/ptrace_advisory.asc
x_refsource_CONFIRM
x_transferred
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV59675
Resource:
vendor-advisory
x_refsource_AIXAPAR
x_transferred
Hyperlink: https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-0930/
Resource:
x_refsource_MISC
x_transferred
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV59045
Resource:
vendor-advisory
x_refsource_AIXAPAR
x_transferred
Hyperlink: http://archives.neohapsis.com/archives/bugtraq/2014-05/0031.html
Resource:
mailing-list
x_refsource_BUGTRAQ
x_transferred
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV58766
Resource:
vendor-advisory
x_refsource_AIXAPAR
x_transferred
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV58888
Resource:
vendor-advisory
x_refsource_AIXAPAR
x_transferred
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV58948
Resource:
vendor-advisory
x_refsource_AIXAPAR
x_transferred
Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/92262
Resource:
vdb-entry
x_refsource_XF
x_transferred
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV58861
Resource:
vendor-advisory
x_refsource_AIXAPAR
x_transferred
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV58840
Resource:
vendor-advisory
x_refsource_AIXAPAR
x_transferred
Hyperlink: http://aix.software.ibm.com/aix/efixes/security/ptrace_advisory.asc
Resource:
x_refsource_CONFIRM
x_transferred
Information is not available yet
▼National Vulnerability Database (NVD)
nvd.nist.gov
Source:psirt@us.ibm.com
Published At:08 May, 2014 | 10:55
Updated At:12 Apr, 2025 | 10:46

The ptrace system call in IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.2.x, allows local users to cause a denial of service (system crash) or obtain sensitive information from kernel memory via a crafted PT_LDINFO operation.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary2.04.7MEDIUM
AV:L/AC:M/Au:N/C:N/I:N/A:C
Type: Primary
Version: 2.0
Base score: 4.7
Base severity: MEDIUM
Vector:
AV:L/AC:M/Au:N/C:N/I:N/A:C
CPE Matches
IBM Corporation
ibm
>>vios>>2.2.0.10
cpe:2.3:a:ibm:vios:2.2.0.10:*:*:*:*:*:*:*
IBM Corporation
ibm
>>vios>>2.2.0.11
cpe:2.3:a:ibm:vios:2.2.0.11:*:*:*:*:*:*:*
IBM Corporation
ibm
>>vios>>2.2.0.12
cpe:2.3:a:ibm:vios:2.2.0.12:*:*:*:*:*:*:*
IBM Corporation
ibm
>>vios>>2.2.0.13
cpe:2.3:a:ibm:vios:2.2.0.13:*:*:*:*:*:*:*
IBM Corporation
ibm
>>vios>>2.2.1.0
cpe:2.3:a:ibm:vios:2.2.1.0:*:*:*:*:*:*:*
IBM Corporation
ibm
>>vios>>2.2.1.1
cpe:2.3:a:ibm:vios:2.2.1.1:*:*:*:*:*:*:*
IBM Corporation
ibm
>>vios>>2.2.1.3
cpe:2.3:a:ibm:vios:2.2.1.3:*:*:*:*:*:*:*
IBM Corporation
ibm
>>vios>>2.2.1.4
cpe:2.3:a:ibm:vios:2.2.1.4:*:*:*:*:*:*:*
IBM Corporation
ibm
>>vios>>2.2.2.0
cpe:2.3:a:ibm:vios:2.2.2.0:*:*:*:*:*:*:*
IBM Corporation
ibm
>>vios>>2.2.3.0
cpe:2.3:a:ibm:vios:2.2.3.0:*:*:*:*:*:*:*
IBM Corporation
ibm
>>aix>>5.3
cpe:2.3:o:ibm:aix:5.3:*:*:*:*:*:*:*
IBM Corporation
ibm
>>aix>>6.1
cpe:2.3:o:ibm:aix:6.1:*:*:*:*:*:*:*
IBM Corporation
ibm
>>aix>>7.1
cpe:2.3:o:ibm:aix:7.1:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
NVD-CWE-noinfoPrimarynvd@nist.gov
CWE ID: NVD-CWE-noinfo
Type: Primary
Source: nvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://aix.software.ibm.com/aix/efixes/security/ptrace_advisory.ascpsirt@us.ibm.com
Vendor Advisory
http://archives.neohapsis.com/archives/bugtraq/2014-05/0031.htmlpsirt@us.ibm.com
N/A
http://www.ibm.com/support/docview.wss?uid=isg1IV58766psirt@us.ibm.com
Vendor Advisory
http://www.ibm.com/support/docview.wss?uid=isg1IV58840psirt@us.ibm.com
Vendor Advisory
http://www.ibm.com/support/docview.wss?uid=isg1IV58861psirt@us.ibm.com
Vendor Advisory
http://www.ibm.com/support/docview.wss?uid=isg1IV58888psirt@us.ibm.com
Vendor Advisory
http://www.ibm.com/support/docview.wss?uid=isg1IV58948psirt@us.ibm.com
Vendor Advisory
http://www.ibm.com/support/docview.wss?uid=isg1IV59045psirt@us.ibm.com
N/A
http://www.ibm.com/support/docview.wss?uid=isg1IV59675psirt@us.ibm.com
N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/92262psirt@us.ibm.com
N/A
https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-0930/psirt@us.ibm.com
Exploit
http://aix.software.ibm.com/aix/efixes/security/ptrace_advisory.ascaf854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://archives.neohapsis.com/archives/bugtraq/2014-05/0031.htmlaf854a3a-2127-422b-91ae-364da2661108
N/A
http://www.ibm.com/support/docview.wss?uid=isg1IV58766af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www.ibm.com/support/docview.wss?uid=isg1IV58840af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www.ibm.com/support/docview.wss?uid=isg1IV58861af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www.ibm.com/support/docview.wss?uid=isg1IV58888af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www.ibm.com/support/docview.wss?uid=isg1IV58948af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www.ibm.com/support/docview.wss?uid=isg1IV59045af854a3a-2127-422b-91ae-364da2661108
N/A
http://www.ibm.com/support/docview.wss?uid=isg1IV59675af854a3a-2127-422b-91ae-364da2661108
N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/92262af854a3a-2127-422b-91ae-364da2661108
N/A
https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-0930/af854a3a-2127-422b-91ae-364da2661108
Exploit
Hyperlink: http://aix.software.ibm.com/aix/efixes/security/ptrace_advisory.asc
Source: psirt@us.ibm.com
Resource:
Vendor Advisory
Hyperlink: http://archives.neohapsis.com/archives/bugtraq/2014-05/0031.html
Source: psirt@us.ibm.com
Resource: N/A
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV58766
Source: psirt@us.ibm.com
Resource:
Vendor Advisory
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV58840
Source: psirt@us.ibm.com
Resource:
Vendor Advisory
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV58861
Source: psirt@us.ibm.com
Resource:
Vendor Advisory
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV58888
Source: psirt@us.ibm.com
Resource:
Vendor Advisory
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV58948
Source: psirt@us.ibm.com
Resource:
Vendor Advisory
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV59045
Source: psirt@us.ibm.com
Resource: N/A
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV59675
Source: psirt@us.ibm.com
Resource: N/A
Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/92262
Source: psirt@us.ibm.com
Resource: N/A
Hyperlink: https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-0930/
Source: psirt@us.ibm.com
Resource:
Exploit
Hyperlink: http://aix.software.ibm.com/aix/efixes/security/ptrace_advisory.asc
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Vendor Advisory
Hyperlink: http://archives.neohapsis.com/archives/bugtraq/2014-05/0031.html
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV58766
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Vendor Advisory
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV58840
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Vendor Advisory
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV58861
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Vendor Advisory
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV58888
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Vendor Advisory
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV58948
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Vendor Advisory
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV59045
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Hyperlink: http://www.ibm.com/support/docview.wss?uid=isg1IV59675
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/92262
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Hyperlink: https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-0930/
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Exploit

Change History

0
Information is not available yet

Similar CVEs

2Records found
CVE-2008-2709
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-4.7||MEDIUM
EPSS-0.05% / 14.02%
||
7 Day CHG~0.00%
Published-16 Jun, 2008 | 20:00
Updated-07 Aug, 2024 | 09:14
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Buffer overflow in the BrSmRcvAndCheck function in the RCHMGR module on IBM OS/400 V5R4M0, V5R4M5, and V6R1M0 allows local users to cause a denial of service (task halt and main storage dump) via unspecified vectors involving the running of diagnostics on a modem port. NOTE: there might be limited attack scenarios.

Action-Not Available
Vendor-n/aIBM Corporation
Product-os_400n/a
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2007-4228
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-4.7||MEDIUM
EPSS-0.06% / 17.02%
||
7 Day CHG~0.00%
Published-08 Aug, 2007 | 22:00
Updated-07 Aug, 2024 | 14:46
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

rmpvc on IBM AIX 4.3 allows local users to cause a denial of service (system crash) via long port logical name (-l) argument.

Action-Not Available
Vendor-n/aIBM Corporation
Product-aixn/a
Details not found