Unknown
CVE-2014-0196
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
Unknown
(0 users assessed)Unknown
(0 users assessed)Unknown
Unknown
Unknown
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
The n_tty_write function in drivers/tty/n_tty.c in the Linux kernel through 3.14.3 does not properly manage tty driver access in the “LECHO & !OPOST” case, which allows local users to cause a denial of service (memory corruption and system crash) or gain privileges by triggering a race condition involving read and write operations with long strings.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Vendors
- canonical,
- debian,
- f5,
- linux,
- oracle,
- redhat,
- suse
Products
- big-ip access policy manager,
- big-ip advanced firewall manager,
- big-ip analytics,
- big-ip application acceleration manager,
- big-ip application security manager,
- big-ip edge gateway,
- big-ip global traffic manager,
- big-ip link controller,
- big-ip local traffic manager,
- big-ip policy enforcement manager,
- big-ip protocol security module,
- big-ip wan optimization manager,
- big-ip webaccelerator,
- big-iq application delivery controller 4.5.0,
- big-iq centralized management 4.6.0,
- big-iq cloud,
- big-iq cloud and orchestration 1.0.0,
- big-iq device,
- big-iq security,
- debian linux 6.0,
- debian linux 7.0,
- enterprise linux 6.0,
- enterprise linux eus 6.3,
- enterprise linux eus 6.4,
- enterprise linux server eus 6.3,
- enterprise manager,
- linux 6,
- linux kernel,
- linux kernel 2.6.31,
- suse linux enterprise desktop 11,
- suse linux enterprise high availability extension 11,
- suse linux enterprise server 11,
- ubuntu linux 10.04,
- ubuntu linux 12.04,
- ubuntu linux 12.10,
- ubuntu linux 13.10,
- ubuntu linux 14.04
Exploited in the Wild
- Government or Industry Alert (https://www.cisa.gov/known-exploited-vulnerabilities-catalog)
- Other: CISA Gov Alert (https://www.cisa.gov/news-events/alerts/2023/05/12/cisa-adds-seven-known-exploited-vulnerabilities-catalog)
Would you like to delete this Exploited in the Wild Report?
Yes, delete this reportReferences
Advisory
Additional Info
Technical Analysis
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below: