CVE-2011-1781

SystemTap 1.4, when unprivileged (aka stapusr) mode is enabled, allows local users to cause a denial of service (divide-by-zero error and OOPS) via a crafted ELF program with DWARF expressions that are not properly handled by a stap script that performs stack unwinding (aka backtracing).

CVSS v2.0 1.2 LOW

1.2^/10

CVSS v2.0 : LOW

Vector : AV:L/AC:H/Au:N/C:N/I:N/A:P

Exploitability : 1.9 / Impact : 2.9

Access Vector LOCAL

Access Complexity HIGH

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://openwall.com/lists/oss-security/2011/05/20/2
http://secunia.com/advisories/44802
http://sourceware.org/git/?p=systemtap.git%3Ba=commit%3Bh=fa2e3415185a28542d419a641ecd6cddd52e3cd9
http://www.mandriva.com/security/advisories?name=MDVSA-2011:155
http://www.securityfocus.com/bid/47934
https://bugzilla.redhat.com/show_bug.cgi?id=702687
https://rhn.redhat.com/errata/RHSA-2011-0842.html

Configurations

Configuration 1 (hide)

cpe:2.3:a:systemtap:systemtap:1.4:*:*:*:*:*:*:*

History

No history.

Information

Published : 2011-08-29 21:55

Updated : 2024-02-28 11:41

NVD link : CVE-2011-1781

Mitre link : CVE-2011-1781

CVE.ORG link : CVE-2011-1781

JSON object : View

Products Affected

systemtap

systemtap

CWE

CWE-189

Numeric Errors

{"id": "CVE-2011-1781", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 1.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:H/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "HIGH", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 1.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2011-08-29T21:55:00.847", "references": [{"url": "http://openwall.com/lists/oss-security/2011/05/20/2", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/44802", "source": "secalert@redhat.com"}, {"url": "http://sourceware.org/git/?p=systemtap.git%3Ba=commit%3Bh=fa2e3415185a28542d419a641ecd6cddd52e3cd9", "source": "secalert@redhat.com"}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:155", "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/bid/47934", "source": "secalert@redhat.com"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=702687", "source": "secalert@redhat.com"}, {"url": "https://rhn.redhat.com/errata/RHSA-2011-0842.html", "source": "secalert@redhat.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-189"}]}], "descriptions": [{"lang": "en", "value": "SystemTap 1.4, when unprivileged (aka stapusr) mode is enabled, allows local users to cause a denial of service (divide-by-zero error and OOPS) via a crafted ELF program with DWARF expressions that are not properly handled by a stap script that performs stack unwinding (aka backtracing)."}, {"lang": "es", "value": "SystemTap 1.4, (tambi\u00e9n conocido como stapusr) cuando el modo no privilegiado est\u00e1 habilitado, permite a usuarios locales provocar una denegaci\u00f3n de servicio (error de divisi\u00f3n por cero y OOPS) a trav\u00e9s de un programa de ELF modificado con expresiones DWARF que no est\u00e1n bien mipulado por una secuencia de comandos STAP que realiza acondicionamiento de la pila (tambi\u00e9n conocido como rastreo)."}], "lastModified": "2023-02-13T04:30:53.587", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:systemtap:systemtap:1.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CE5CA99B-6DED-4395-BFE0-C8DB7F504AF0"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}