Test Kennung:	1.3.6.1.4.1.25623.1.0.901043
Kategorie:	Denial of Service
Titel:	SystemTap Unprivileged Mode Multiple DoS Vulnerabilities
Zusammenfassung:	SystemTap is prone to multiple denial of service (DoS) vulnerabilities.
Beschreibung:	Summary: SystemTap is prone to multiple denial of service (DoS) vulnerabilities. Vulnerability Insight: Multiple errors occur when SystemTap is running in 'unprivileged' mode. - Error within the handling of the unwind table and CIE/CFI records - A buffer overflow error when processing a long number of parameters - A stack overflow when processing DWARF information Vulnerability Impact: Attackers can exploit this issue to execute arbitrary code and cause a denial of service or compromise a vulnerable system. Affected Software/OS: SystemTap version 1.0 and prior. Solution: Apply the patch from the referenced bugzilla attachments. CVSS Score: 1.9 CVSS Vector: AV:L/AC:M/Au:N/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2009-2911 36778 http://www.securityfocus.com/bid/36778 37167 http://secunia.com/advisories/37167 ADV-2009-2989 http://www.vupen.com/english/advisories/2009/2989 FEDORA-2009-10719 https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00627.html FEDORA-2009-10849 https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00793.html [oss-security] 20091021 CVE assignment notification -- CVE-2009-2911 - Three SystemTap-1.0 DoS issues http://www.openwall.com/lists/oss-security/2009/10/21/1 http://gcc.gnu.org/bugzilla/show_bug.cgi?id=41633 http://sources.redhat.com/bugzilla/show_bug.cgi?id=10750 https://bugzilla.redhat.com/show_bug.cgi?id=529175
Copyright	Copyright (C) 2009 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.