CVE-2014-9273
published 2014-12-08CVE-2014-9273: lib/handle.c in Hivex before 1.3.11 allows local users to execute arbitrary code and gain privileges via a small hive files, which triggers an out-of-bounds…
medium4.6CVSS 3.1
AVLACLAuNCPIPAP
lib/handle.c in Hivex before 1.3.11 allows local users to execute arbitrary code and gain privileges via a small hive files, which triggers an out-of-bounds read or write.
Affected
15 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | hivex | < hivex 1.3.11-1 (bookworm) | hivex 1.3.11-1 (bookworm) |
| debian | hivex | <= 1.3.10-2 | — |
| opensuse | opensuse | — | — |
| opensuse | opensuse | — | — |
| redhat | enterprise_linux_desktop | — | — |
| redhat | enterprise_linux_desktop | — | — |
| redhat | enterprise_linux_hpc_node | — | — |
| redhat | enterprise_linux_server | — | — |
| redhat | enterprise_linux_server | — | — |
| redhat | enterprise_linux_workstation | — | — |
| redhat | enterprise_linux_workstation | — | — |
| redhat | hivex | >= 0 < 1.3.11-1 | 1.3.11-1 |
| redhat | hivex | >= 0 < 1.3.11-1 | 1.3.11-1 |
| redhat | hivex | >= 0 < 1.3.11-1 | 1.3.11-1 |
| redhat | hivex | >= 0 < 1.3.11-1 | 1.3.11-1 |
CVSS provenance
nvd4.6MEDIUMAV:L/AC:L/Au:N/C:P/I:P/A:P
osv4.6MEDIUM