CVE-2014-3676Out-of-bounds Write in Redhat Shim

CWE-787Out-of-bounds WriteCWE-122Heap-based Buffer Overflow7 documents6 sources
Severity
7.5HIGHNVD
EPSS
5.2%
top 10.09%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Redhat Shim
Timeline
PublishedOct 22
Latest updateMay 13

Description

Heap-based buffer overflow in Shim allows remote attackers to execute arbitrary code via a crafted IPv6 address, related to the "tftp:// DHCPv6 boot option."

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

NVDredhat/shim0.30.8
Ubunturedhat/shim< 0.8-0ubuntu2

🔴Vulnerability Details

3
GHSA
GHSA-pg7r-qqvh-q4vw: Heap-based buffer overflow in Shim allows remote attackers to execute arbitrary code via a crafted IPv6 address, related to the "tftp:// DHCPv6 boot o2022-05-13
OSV
CVE-2014-3676: Heap-based buffer overflow in Shim allows remote attackers to execute arbitrary code via a crafted IPv6 address, related to the "tftp:// DHCPv6 boot o2014-10-22
CVEList
CVE-2014-3676: Heap-based buffer overflow in Shim allows remote attackers to execute arbitrary code via a crafted IPv6 address, related to the "tftp:// DHCPv6 boot o2014-10-22

📋Vendor Advisories

1
Red Hat
shim: heap-based buffer overflow flaw in IPv6 address parsing2014-10-13

💬Community

2
Bugzilla
CVE-2014-3676 CVE-2014-3677 CVE-2014-3675 shim: various flaws [fedora-all]2014-10-14
Bugzilla
CVE-2014-3676 shim: heap-based buffer overflow flaw in IPv6 address parsing2014-10-01