Published: 11/03/2014 Updated: 13/02/2023

CVSS v2 Base Score: 6.9 | Impact Score: 10 | Exploitability Score: 3.4

VMScore: 614

Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

Stack-based buffer overflow in udisks prior to 1.0.5 and 2.x prior to 2.1.3 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a long mount point.

Vulnerable Product	Search on Vulmon	Subscribe to Product
freedesktop udisks 2.1.0
freedesktop udisks 1.0.1
freedesktop udisks 1.0
freedesktop udisks 2.1.2
freedesktop udisks 2.0.90
freedesktop udisks 2.0.0
freedesktop udisks 2.0.1
freedesktop udisks 2.1.1
freedesktop udisks 2.0.91
freedesktop udisks
freedesktop udisks 2.0.92
canonical ubuntu linux 13.10
canonical ubuntu linux 12.10
canonical ubuntu linux 12.04

UDisks could be made to crash or run programs as an administrator ...

Florian Weimer discovered a buffer overflow in udisks's mount path parsing code which may result in privilege escalation For the oldstable distribution (squeeze), this problem has been fixed in version 101+git20100614-3squeeze1 For the stable distribution (wheezy), this problem has been fixed in version 104-7wheezy1 For the unstable distribu ...

CWE-119 http://www.ubuntu.com/usn/USN-2142-1 http://lists.freedesktop.org/archives/devkit-devel/2014-March/001568.html http://lists.opensuse.org/opensuse-updates/2014-03/msg00051.html http://lists.opensuse.org/opensuse-updates/2014-03/msg00052.html http://lists.opensuse.org/opensuse-updates/2014-03/msg00053.html http://rhn.redhat.com/errata/RHSA-2014-0293.html http://www.debian.org/security/2014/dsa-2872 http://www.securityfocus.com/bid/66081 https://usn.ubuntu.com/2142-1/https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-0004

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect