cbcvebase.
CVE-2009-1894
published 2009-07-17

CVE-2009-1894: Race condition in PulseAudio 0.9.9, 0.9.10, and 0.9.14 allows local users to gain privileges via vectors involving creation of a hard link, related to the…

PriorityP432high7.2CVSS 2.0
AVLACLAuNCCICAC
EXPLOIT
EPSS
0.74%
49.8th percentile
Race condition in PulseAudio 0.9.9, 0.9.10, and 0.9.14 allows local users to gain privileges via vectors involving creation of a hard link, related to the application setting LD_BIND_NOW to 1, and then calling execv on the target of the /proc/self/exe symlink.

Affected

10 ranges
VendorProductVersion rangeFixed in
debianpulseaudio< pulseaudio 0.9.15-4.1 (bookworm)pulseaudio 0.9.15-4.1 (bookworm)
linuxlinux_kernel
linuxlinux_kernel
pulseaudiopulseaudio
pulseaudiopulseaudio
pulseaudiopulseaudio
pulseaudiopulseaudio>= 0 < 0.9.15-4.10.9.15-4.1
pulseaudiopulseaudio>= 0 < 0.9.15-4.10.9.15-4.1
pulseaudiopulseaudio>= 0 < 0.9.15-4.10.9.15-4.1
pulseaudiopulseaudio>= 0 < 0.9.15-4.10.9.15-4.1

CVSS provenance

nvdv2.07.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
osv7.2HIGH
vendor_debian7.2HIGH
vendor_redhat7.2HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.