CVE-2011-3345 in Enterprise Distributioninformación

Resumen

por MITRE

ulp/sdp/sdp_proc.c in the ib_sdp module (aka ib_sdp.ko) in the ofa_kernel package in the InfiniBand driver implementation in OpenFabrics Enterprise Distribution (OFED) before 1.5.3 does not properly handle certain non-array variables, which allows local users to cause a denial of service (stack memory corruption and system crash) by reading the /proc/net/sdpstats file.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservar

2011-08-30

Divulgación

2011-09-19

Moderación

aceptado

Artículo

VDB-58561

CPE

listo

EPSS

0.00343

KEV

no

Actividades

muy bajo

Fuentes

Interested in the pricing of exploits?

See the underground prices here!