CVE-2001-1399

Certain operations in Linux kernel before 2.2.19 on the x86 architecture copy the wrong number of bytes, which might allow attackers to modify memory, aka "User access asm bug on x86."

CVSS v2.0 2.1 LOW

2.1^/10

CVSS v2.0 : LOW

Vector : AV:L/AC:L/Au:N/C:N/I:P/A:N

Exploitability : 3.9 / Impact : 2.9

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://www.redhat.com/support/errata/RHSA-2001-047.html	Patch Vendor Advisory
http://www.linux.org.uk/VERSION/relnotes.2219.html
http://marc.info/?l=bugtraq&m=98684172109474&w=2
http://marc.info/?l=bugtraq&m=98759029811377&w=2
http://marc.info/?l=bugtraq&m=98653252326445&w=2
http://marc.info/?l=bugtraq&m=98575345009963&w=2
http://marc.info/?l=bugtraq&m=99013830726309&w=2
http://marc.info/?l=bugtraq&m=98637996127004&w=2
http://marc.info/?l=bugtraq&m=98775114228203&w=2
https://www.debian.org/security/2001/dsa-047

Advertisement

Configurations

Configuration 1 (hide)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Information

Published : 2001-04-16 21:00

Updated : 2016-12-07 18:59

NVD link : CVE-2001-1399

Mitre link : CVE-2001-1399

JSON object : View

CWE

NVD-CWE-Other

Advertisement

Products Affected

linux

linux_kernel

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.redhat.com/support/errata/RHSA-2001-047.html", "name": "RHSA-2001:047", "tags": ["Patch", "Vendor Advisory"], "refsource": "REDHAT"}, {"url": "http://www.linux.org.uk/VERSION/relnotes.2219.html", "name": "http://www.linux.org.uk/VERSION/relnotes.2219.html", "tags": [], "refsource": "CONFIRM"}, {"url": "http://marc.info/?l=bugtraq&m=98684172109474&w=2", "name": "20010409 PROGENY-SA-2001-01: execve()/ptrace() exploit in Linux kernels", "tags": [], "refsource": "BUGTRAQ"}, {"url": "http://marc.info/?l=bugtraq&m=98759029811377&w=2", "name": "MDKSA-2001:037", "tags": [], "refsource": "MANDRAKE"}, {"url": "http://marc.info/?l=bugtraq&m=98653252326445&w=2", "name": "20010405 Trustix Security Advisory #2001-0003 - kernel", "tags": [], "refsource": "BUGTRAQ"}, {"url": "http://marc.info/?l=bugtraq&m=98575345009963&w=2", "name": "IMNX-2001-70-010-01", "tags": [], "refsource": "IMMUNIX"}, {"url": "http://marc.info/?l=bugtraq&m=99013830726309&w=2", "name": "SuSE-SA:2001:018", "tags": [], "refsource": "SUSE"}, {"url": "http://marc.info/?l=bugtraq&m=98637996127004&w=2", "name": "CSSA-2001-012.0", "tags": [], "refsource": "CALDERA"}, {"url": "http://marc.info/?l=bugtraq&m=98775114228203&w=2", "name": "CLA-2001:394", "tags": [], "refsource": "CONECTIVA"}, {"url": "https://www.debian.org/security/2001/dsa-047", "name": "DSA-047", "tags": [], "refsource": "DEBIAN"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Certain operations in Linux kernel before 2.2.19 on the x86 architecture copy the wrong number of bytes, which might allow attackers to modify memory, aka \"User access asm bug on x86.\""}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2001-1399", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 2.1, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "severity": "LOW", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2001-04-17T04:00Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "2.2.19"}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2016-12-08T02:59Z"}