Published: 28/02/2013 Updated: 13/02/2023

CVSS v2 Base Score: 6.2 | Impact Score: 10 | Exploitability Score: 1.9

VMScore: 625

Vector: AV:L/AC:H/Au:N/C:C/I:C/A:C

Buffer overflow in the VFAT filesystem implementation in the Linux kernel prior to 3.3 allows local users to gain privileges or cause a denial of service (system crash) via a VFAT write operation on a filesystem with the utf8 mount option, which is not properly handled during UTF-8 to UTF-16 conversion.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel 3.2.21
linux linux kernel 3.0.25
linux linux kernel 3.1.2
linux linux kernel 3.0
linux linux kernel 3.2.19
linux linux kernel 3.0.22
linux linux kernel 3.2.23
linux linux kernel 3.0.5
linux linux kernel
linux linux kernel 3.2.18
linux linux kernel 3.3
linux linux kernel 3.0.38
linux linux kernel 3.1
linux linux kernel 3.2.5
linux linux kernel 3.2.26
linux linux kernel 3.0.18
linux linux kernel 3.0.6
linux linux kernel 3.0.36
linux linux kernel 3.0.35
linux linux kernel 3.0.11
linux linux kernel 3.0.34
linux linux kernel 3.0.32
linux linux kernel 3.2
linux linux kernel 3.2.16
linux linux kernel 3.0.19
linux linux kernel 3.2.27
linux linux kernel 3.0.37
linux linux kernel 3.0.4
linux linux kernel 3.0.27
linux linux kernel 3.2.11
linux linux kernel 3.0.42
linux linux kernel 3.0.23
linux linux kernel 3.2.10
linux linux kernel 3.0.8
linux linux kernel 3.2.14
linux linux kernel 3.2.29
linux linux kernel 3.0.40
linux linux kernel 3.0.33
linux linux kernel 3.0.28
linux linux kernel 3.2.25
linux linux kernel 3.2.4
linux linux kernel 3.0.13
linux linux kernel 3.2.9
linux linux kernel 3.0.10
linux linux kernel 3.2.15
linux linux kernel 3.0.1
linux linux kernel 3.1.6
linux linux kernel 3.2.20
linux linux kernel 3.2.24
linux linux kernel 3.2.6
linux linux kernel 3.2.2
linux linux kernel 3.0.17
linux linux kernel 3.1.3
linux linux kernel 3.1.9
linux linux kernel 3.0.44
linux linux kernel 3.0.16
linux linux kernel 3.2.13
linux linux kernel 3.0.21
linux linux kernel 3.0.7
linux linux kernel 3.1.5
linux linux kernel 3.1.8
linux linux kernel 3.2.1
linux linux kernel 3.2.7
linux linux kernel 3.0.20
linux linux kernel 3.0.24
linux linux kernel 3.0.15
linux linux kernel 3.2.30
linux linux kernel 3.0.39
linux linux kernel 3.0.2
linux linux kernel 3.1.7
linux linux kernel 3.1.1
linux linux kernel 3.0.12
linux linux kernel 3.2.22
linux linux kernel 3.2.17
linux linux kernel 3.2.8
linux linux kernel 3.1.10
linux linux kernel 3.0.3
linux linux kernel 3.0.9
linux linux kernel 3.0.26
linux linux kernel 3.1.4
linux linux kernel 3.0.43
linux linux kernel 3.0.30
linux linux kernel 3.0.31
linux linux kernel 3.0.29
linux linux kernel 3.2.12
linux linux kernel 3.2.28
linux linux kernel 3.0.14
linux linux kernel 3.2.3
linux linux kernel 3.0.41
redhat enterprise linux 6.0
redhat enterprise mrg 2.0

Synopsis Important: kernel security and bug fix update Type/Severity Security Advisory: Important Topic Updated kernel packages that fix multiple security issues and several bugsare now available for Red Hat Enterprise Linux 6The Red Hat Security Response Team has rated this update as havingimportant secur ...

Synopsis Important: kernel-rt security and bug fix update Type/Severity Security Advisory: Important Topic Updated kernel-rt packages that fix several security issues and multiplebugs are now available for Red Hat Enterprise MRG 23The Red Hat Security Response Team has rated this update as havingimportant ...

Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service, information leak or privilege escalation The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2012-2121 Benjamin Herrenschmidt and Jason Baron discovered issues with the IOMMU mapping of memory slots us ...

Heap-based buffer overflow in the tg3_read_vpd function in drivers/net/ethernet/broadcom/tg3c in the Linux kernel before 386 allows physically proximate attackers to cause a denial of service (system crash) or possibly execute arbitrary code via crafted firmware that specifies a long string in the Vital Product Data (VPD) data structure Use-af ...

Several security issues were fixed in the kernel ...

# Exploit Title: Android Kernel 26 Local DoS # Date: 12/7/12 # Author: G13 # Twitter: @g13net # Versions: Android 22, 23 # Category: DoS (android) # ##### Vulnerability ##### The Android OS is vulnerable to a local DoS when a filename with a length of 2048 or larger is attempted to be written to the sdcard(vfat fs) multiple times The result ...

CWE-119 https://github.com/torvalds/linux/commit/0720a06a7518c9d0c0125bd5d1f3b6264c55c3dd http://www.osvdb.org/88310 https://bugzilla.redhat.com/show_bug.cgi?id=916115 http://www.exploit-db.com/exploits/23248/http://www.kernel.org/pub/linux/kernel/v3.x/patch-3.3.bz2 http://www.openwall.com/lists/oss-security/2013/02/26/8 http://rhn.redhat.com/errata/RHSA-2013-0744.html http://rhn.redhat.com/errata/RHSA-2013-0928.html http://rhn.redhat.com/errata/RHSA-2013-1026.html http://www.securityfocus.com/bid/58200 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=0720a06a7518c9d0c0125bd5d1f3b6264c55c3dd https://nvd.nist.gov https://access.redhat.com/errata/RHSA-2013:0744 https://www.exploit-db.com/exploits/23248/https://usn.ubuntu.com/1778-1/https://www.debian.org/security/./dsa-2668

CVE-2013-1773

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect