Published: 25/09/2013 Updated: 15/11/2023

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 642

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

The scm_check_creds function in net/core/scm.c in the Linux kernel prior to 3.11 performs a capability check in an incorrect namespace, which allows local users to gain privileges via PID spoofing.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel 3.9
linux linux kernel

Several security issues were fixed in the kernel ...

The scm_check_creds function in net/core/scmc in the Linux kernel before 311 performs a capability check in an incorrect namespace, which allows local users to gain privileges via PID spoofing ...

CWE-264 https://www.kernel.org/pub/linux/kernel/v3.x/patch-3.11.bz2 https://bugzilla.redhat.com/show_bug.cgi?id=1004736 https://github.com/torvalds/linux/commit/d661684cf6820331feae71146c35da83d794467e http://www.openwall.com/lists/oss-security/2013/09/05/3 http://www.ubuntu.com/usn/USN-1998-1 http://www.ubuntu.com/usn/USN-1995-1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=d661684cf6820331feae71146c35da83d794467e https://usn.ubuntu.com/1998-1/https://nvd.nist.gov https://access.redhat.com/security/cve/cve-2013-4300

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2013-4300

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect