CVE-2012-4467 in Kernelinfo

Summary

The (1) do_siocgstamp and (2) do_siocgstampns functions in net/socket.c in the Linux kernel before 3.5.4 use an incorrect argument order, which allows local users to obtain sensitive information from kernel memory or cause a denial of service (system crash) via a crafted ioctl call.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

08/21/2012

Disclosure

10/10/2012

Moderation

VulDB entry created

Entries

VDB-6587 (1)

CPE

ready

CWE

CWE-399 (Confirmed)

CVSS

6.1

EPSS

0.00049

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-4467
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-4467
CVE Details	https://www.cvedetails.com/cve/CVE-2012-4467/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!