PT-2014-1836 · Red Hat+2 · Red Hat+2

Published

2014-10-22

·

Updated

2024-06-15

·

CVE-2014-3676

CVSS v2.0

7.5

High

VectorAV:N/AC:L/Au:N/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions shim versions 0.7 Red Hat Enterprise Linux (affected versions not specified)
Description The issue is related to a heap-based buffer overflow in Shim, allowing remote attackers to execute arbitrary code via a crafted IPv6 address, specifically with the "tftp:// DHCPv6 boot option." Multiple vulnerabilities in the shim package of Red Hat Enterprise Linux can be exploited remotely, potentially leading to disruptions in confidentiality, integrity, and availability of protected information.
Recommendations For shim version 0.7, consider disabling the vulnerable function related to the "tftp:// DHCPv6 boot option" until a patch is available. For Red Hat Enterprise Linux, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

RCE

Out of bounds Read

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-125CWE-787

Related Identifiers

ALT-PU-2018-2088
BDU:2015-06431
BDU:2015-06533
BDU:2015-06534
BDU:2015-06535
BDU:2015-06536
CVE-2014-3676
OPENSUSE-SU-2024:10091-1
RHSA-2014:1801
RHSA-2014_1801

Affected Products

Alt Linux
Red Hat
Suse