PT-2016-7397 · Systemd+2 · Systemd+2

Andrew Ayer

Publicado

2014-09-12

Atualizado

2023-09-12

CVE-2016-7796

CVSS v3.1

5.5

Média

Vetor

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions systemd (affected versions not specified)

Description The issue allows local users to cause a denial of service, resulting in a system hang. This occurs when a zero-length message is received over a notify socket, causing an error to be returned and the notification handler to be disabled. The manager dispatch notify fd function in systemd is involved in this issue.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-20

Identificadores relacionados

ALT-PU-2014-2133

ALT-PU-2016-1544

CVE-2016-7796

DLA-659-1

OPENSUSE-SU-2016_2522-1

OPENSUSE-SU-2016_2539-1

RHSA-2017:0003

SUSE-SU-2016:2475-1

SUSE-SU-2016:2476-1

SUSE-SU-2016_2475-1

SUSE-SU-2016_2476-1

SUSE-SU-2017:2699-1

SUSE-SU-2017:2700-1

Produtos afetados

Alt Linux

Suse

Systemd

PT-2016-7397 · Systemd+2 · Systemd+2

CVE-2016-7796

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 44