[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

249982

 
 

909

 
 

195748

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2007-1353Date: (C)2007-04-24   (M)2023-12-22


The setsockopt function in the L2CAP and HCI Bluetooth support in the Linux kernel before 2.4.34.3 allows context-dependent attackers to read kernel memory and obtain sensitive information via unspecified vectors involving the copy_from_user function accessing an uninitialized stack buffer.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 2.1
Exploit Score: 3.9
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality: PARTIAL
Integrity: NONE
Availability: NONE
  
Reference:
BID-23594
SECUNIA-24976
SECUNIA-25596
SECUNIA-25683
SECUNIA-25700
SECUNIA-25838
SECUNIA-26133
SECUNIA-26139
SECUNIA-26289
SECUNIA-26379
SECUNIA-26450
SECUNIA-26478
SECUNIA-27528
SECUNIA-29058
ADV-2007-1495
DSA-1356
DSA-1503
DSA-1504
RHSA-2007:0376
RHSA-2007:0488
RHSA-2007:0671
RHSA-2007:0672
RHSA-2007:0673
SUSE-SA:2007:035
USN-470-1
USN-486-1
USN-489-1
http://support.avaya.com/elmodocs2/security/ASA-2007-287.htm
http://support.avaya.com/elmodocs2/security/ASA-2007-404.htm
http://www.kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.34.3
oval:org.mitre.oval:def:10626

CPE    1
cpe:/o:linux:linux_kernel
OVAL    2
oval:org.mitre.oval:def:8130
oval:org.mitre.oval:def:8063

© SecPod Technologies