CVE-2009-2793 - Vulnerability Details

Vendors	Products
Netbsd	Netbsd

Link	Providers
http://www.securityfocus.com/archive/1/506531/100/0/threaded

Show plain JSON

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2009-09-16T00:00:00", "descriptions": [{"lang": "en", "value": "The kernel in NetBSD, probably 5.0.1 and earlier, on x86 platforms does not properly handle a pre-commit failure of the iret instruction, which might allow local users to gain privileges via vectors related to a tempEIP pseudocode variable that is outside of the code-segment limits."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-10T18:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20090916 Iret #GP on pre-commit handling failure: the NetBSD case (CVE-2009-2793)", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/506531/100/0/threaded"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2009-2793", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The kernel in NetBSD, probably 5.0.1 and earlier, on x86 platforms does not properly handle a pre-commit failure of the iret instruction, which might allow local users to gain privileges via vectors related to a tempEIP pseudocode variable that is outside of the code-segment limits."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20090916 Iret #GP on pre-commit handling failure: the NetBSD case (CVE-2009-2793)", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/506531/100/0/threaded"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T06:07:35.917Z"}, "title": "CVE Program Container", "references": [{"name": "20090916 Iret #GP on pre-commit handling failure: the NetBSD case (CVE-2009-2793)", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/506531/100/0/threaded"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2009-2793", "datePublished": "2009-09-18T22:00:00", "dateReserved": "2009-08-17T00:00:00", "dateUpdated": "2024-08-07T06:07:35.917Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

product : n/a (string)

vendor : n/a (string)

versions : [ »

0 : { »

status : affected (string)

version : n/a (string)

}

]

}

]

datePublic : 2009-09-16T00:00:00 (string)

descriptions : [ »

0 : { »

lang : en (string)

value : The kernel in NetBSD, probably 5.0.1 and earlier, on x86 platforms does not properly handle a pre-commit failure of the iret instruction, which might allow local users to gain privileges via vectors related to a tempEIP pseudocode variable that is outside of the code-segment limits. (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

description : n/a (string)

lang : en (string)

type : text (string)

}

]

}

]

providerMetadata : { »

dateUpdated : 2018-10-10T18:57:01 (string)

orgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

shortName : mitre (string)

}

references : [ »

0 : { »

name : 20090916 Iret #GP on pre-commit handling failure: the NetBSD case (CVE-2009-2793) (string)

tags : [ »

0 : mailing-list (string)

1 : x_refsource_BUGTRAQ (string)

]

url : http://www.securityfocus.com/archive/1/506531/100/0/threaded (string)

}

]

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : cve@mitre.org (string)

ID : CVE-2009-2793 (string)

STATE : PUBLIC (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : n/a (string)

version : { »

version_data : [ »

0 : { »

version_value : n/a (string)

}

]

}

]

}

vendor_name : n/a (string)

}

]

}

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : The kernel in NetBSD, probably 5.0.1 and earlier, on x86 platforms does not properly handle a pre-commit failure of the iret instruction, which might allow local users to gain privileges via vectors related to a tempEIP pseudocode variable that is outside of the code-segment limits. (string)

}

]

}

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : n/a (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : 20090916 Iret #GP on pre-commit handling failure: the NetBSD case (CVE-2009-2793) (string)

refsource : BUGTRAQ (string)

url : http://www.securityfocus.com/archive/1/506531/100/0/threaded (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-07T06:07:35.917Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

name : 20090916 Iret #GP on pre-commit handling failure: the NetBSD case (CVE-2009-2793) (string)

tags : [ »

0 : mailing-list (string)

1 : x_refsource_BUGTRAQ (string)

2 : x_transferred (string)

]

url : http://www.securityfocus.com/archive/1/506531/100/0/threaded (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

assignerShortName : mitre (string)

cveId : CVE-2009-2793 (string)

datePublished : 2009-09-18T22:00:00 (string)

dateReserved : 2009-08-17T00:00:00 (string)

dateUpdated : 2024-08-07T06:07:35.917Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:netbsd:netbsd:*:*:*:*:*:*:*:*", "matchCriteriaId": "ABB5BE84-628A-4845-92C7-E20ADEE7E904", "versionEndIncluding": "5.0.1", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:0.8:*:*:*:*:*:*:*", "matchCriteriaId": "555181C9-75B1-427B-BF36-47C7D969DCC5", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:0.9:*:*:*:*:*:*:*", "matchCriteriaId": "CAC89BD6-8376-4C8D-A120-1430D8CA113F", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "9DF613C9-DC4A-45F0-BEE1-8450762B0089", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:1.1:*:*:*:*:*:*:*", "matchCriteriaId": "441CEF2E-9687-4930-8536-B8B83018BD28", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:1.2:*:*:*:*:*:*:*", "matchCriteriaId": "55DD3C82-0B7D-4B25-B603-AD6C6D59239A", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:1.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "FC7A39CD-C4B2-4FD9-A450-E5C7A5480174", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:1.3:*:*:*:*:*:*:*", "matchCriteriaId": "7CBA1B13-B378-4F13-BD13-EC58F15F5C81", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:1.3.1:*:*:*:*:*:*:*", "matchCriteriaId": "B8C8CAB1-2D8C-4875-A795-41178D48410F", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:1.3.2:*:*:*:*:*:*:*", "matchCriteriaId": "2D3C937A-E9D8-474A-ABEB-A927EF7CC5B0", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:1.3.3:*:*:*:*:*:*:*", "matchCriteriaId": "2A8F8DE7-7A84-4350-A6D8-FCCB561D63B2", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:1.5:*:*:*:*:*:*:*", "matchCriteriaId": "E10D9BF9-FCC7-4680-AD3A-95757FC005EA", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:1.5.1:*:*:*:*:*:*:*", "matchCriteriaId": "78E8C3A4-9FA7-4F2A-8C65-D4404715E674", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:1.5.2:*:*:*:*:*:*:*", "matchCriteriaId": "DBA2E3A3-EB9B-4B20-B754-EEC914FB1D47", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:1.5.3:*:*:*:*:*:*:*", "matchCriteriaId": "7AC78BA4-70F4-4B9F-93C2-B107E4DCC418", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:1.6:*:*:*:*:*:*:*", "matchCriteriaId": "28A10F5A-067E-4DD8-B585-ABCD6F6B324E", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:1.6.1:*:*:*:*:*:*:*", "matchCriteriaId": "249FA642-3732-4654-88CB-3F1D19A5860A", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:1.6.2:*:*:*:*:*:*:*", "matchCriteriaId": "5071CA39-65B3-4AFB-8898-21819E57A084", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:2.0:*:*:*:*:*:*:*", "matchCriteriaId": "A3C3F588-98DA-4F6F-A083-2B9EE534C561", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:2.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "1C2ED81B-8DA2-46D0-AE24-C61BF8E78AE9", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:2.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "D18C95A3-15E3-41B8-AC28-ACEA57021E24", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:2.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "6CFC6B75-9057-4E58-A4D4-8AEC12AE62E4", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:2.1:*:*:*:*:*:*:*", "matchCriteriaId": "28BD9F91-2384-4557-9648-25FC00D04677", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:3.0:*:*:*:*:*:*:*", "matchCriteriaId": "F9CABFAA-594C-45D7-A0C7-795872A0C68A", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:3.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "4F9432E9-AACA-4242-BDAB-8792ACF72C12", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:3.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "29C02C6B-AAFD-4594-94A4-F26BA3648CB0", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:3.1:*:*:*:*:*:*:*", "matchCriteriaId": "57C533D7-771E-4E33-A4FE-764C0B73F920", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:4.0:*:*:*:*:*:*:*", "matchCriteriaId": "9875E709-11BA-4B8F-A2FC-26844DD4D563", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:4.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "49AF042F-5047-4FA2-B20C-65B2C6EBEA5C", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:5.0:*:*:*:*:*:*:*", "matchCriteriaId": "00564BAA-066A-4627-B6A8-78724E55D363", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The kernel in NetBSD, probably 5.0.1 and earlier, on x86 platforms does not properly handle a pre-commit failure of the iret instruction, which might allow local users to gain privileges via vectors related to a tempEIP pseudocode variable that is outside of the code-segment limits."}, {"lang": "es", "value": "El kernel en NetBSD, posiblemente 5.0.1 y anteriores, en plataformas x86 no gestiona adecuadamente el fallo de preasignaci\u00f3n de la instrucci\u00f3n \"iret\", lo que permitir\u00eda a usuarios locales conseguir privilegios a trav\u00e9s de vectores relacionados con la variable de pseudoc\u00f3digo tempEIP que esta fuera de los limites de segmento de c\u00f3digo."}], "id": "CVE-2009-2793", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2009-09-18T22:30:00.530", "references": [{"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/506531/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/506531/100/0/threaded"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-264"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:netbsd:netbsd:*:*:*:*:*:*:*:* (string)

matchCriteriaId : ABB5BE84-628A-4845-92C7-E20ADEE7E904 (string)

versionEndIncluding : 5.0.1 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:o:netbsd:netbsd:0.8:*:*:*:*:*:*:* (string)

matchCriteriaId : 555181C9-75B1-427B-BF36-47C7D969DCC5 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:o:netbsd:netbsd:0.9:*:*:*:*:*:*:* (string)

matchCriteriaId : CAC89BD6-8376-4C8D-A120-1430D8CA113F (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:o:netbsd:netbsd:1.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 9DF613C9-DC4A-45F0-BEE1-8450762B0089 (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:o:netbsd:netbsd:1.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 441CEF2E-9687-4930-8536-B8B83018BD28 (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:o:netbsd:netbsd:1.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 55DD3C82-0B7D-4B25-B603-AD6C6D59239A (string)

vulnerable : true (boolean)

}

6 : { »

criteria : cpe:2.3:o:netbsd:netbsd:1.2.1:*:*:*:*:*:*:* (string)

matchCriteriaId : FC7A39CD-C4B2-4FD9-A450-E5C7A5480174 (string)

vulnerable : true (boolean)

}

7 : { »

criteria : cpe:2.3:o:netbsd:netbsd:1.3:*:*:*:*:*:*:* (string)

matchCriteriaId : 7CBA1B13-B378-4F13-BD13-EC58F15F5C81 (string)

vulnerable : true (boolean)

}

8 : { »

criteria : cpe:2.3:o:netbsd:netbsd:1.3.1:*:*:*:*:*:*:* (string)

matchCriteriaId : B8C8CAB1-2D8C-4875-A795-41178D48410F (string)

vulnerable : true (boolean)

}

9 : { »

criteria : cpe:2.3:o:netbsd:netbsd:1.3.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 2D3C937A-E9D8-474A-ABEB-A927EF7CC5B0 (string)

vulnerable : true (boolean)

}

10 : { »

criteria : cpe:2.3:o:netbsd:netbsd:1.3.3:*:*:*:*:*:*:* (string)

matchCriteriaId : 2A8F8DE7-7A84-4350-A6D8-FCCB561D63B2 (string)

vulnerable : true (boolean)

}

11 : { »

criteria : cpe:2.3:o:netbsd:netbsd:1.5:*:*:*:*:*:*:* (string)

matchCriteriaId : E10D9BF9-FCC7-4680-AD3A-95757FC005EA (string)

vulnerable : true (boolean)

}

12 : { »

criteria : cpe:2.3:o:netbsd:netbsd:1.5.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 78E8C3A4-9FA7-4F2A-8C65-D4404715E674 (string)

vulnerable : true (boolean)

}

13 : { »

criteria : cpe:2.3:o:netbsd:netbsd:1.5.2:*:*:*:*:*:*:* (string)

matchCriteriaId : DBA2E3A3-EB9B-4B20-B754-EEC914FB1D47 (string)

vulnerable : true (boolean)

}

14 : { »

criteria : cpe:2.3:o:netbsd:netbsd:1.5.3:*:*:*:*:*:*:* (string)

matchCriteriaId : 7AC78BA4-70F4-4B9F-93C2-B107E4DCC418 (string)

vulnerable : true (boolean)

}

15 : { »

criteria : cpe:2.3:o:netbsd:netbsd:1.6:*:*:*:*:*:*:* (string)

matchCriteriaId : 28A10F5A-067E-4DD8-B585-ABCD6F6B324E (string)

vulnerable : true (boolean)

}

16 : { »

criteria : cpe:2.3:o:netbsd:netbsd:1.6.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 249FA642-3732-4654-88CB-3F1D19A5860A (string)

vulnerable : true (boolean)

}

17 : { »

criteria : cpe:2.3:o:netbsd:netbsd:1.6.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 5071CA39-65B3-4AFB-8898-21819E57A084 (string)

vulnerable : true (boolean)

}

18 : { »

criteria : cpe:2.3:o:netbsd:netbsd:2.0:*:*:*:*:*:*:* (string)

matchCriteriaId : A3C3F588-98DA-4F6F-A083-2B9EE534C561 (string)

vulnerable : true (boolean)

}

19 : { »

criteria : cpe:2.3:o:netbsd:netbsd:2.0.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 1C2ED81B-8DA2-46D0-AE24-C61BF8E78AE9 (string)

vulnerable : true (boolean)

}

20 : { »

criteria : cpe:2.3:o:netbsd:netbsd:2.0.2:*:*:*:*:*:*:* (string)

matchCriteriaId : D18C95A3-15E3-41B8-AC28-ACEA57021E24 (string)

vulnerable : true (boolean)

}

21 : { »

criteria : cpe:2.3:o:netbsd:netbsd:2.0.3:*:*:*:*:*:*:* (string)

matchCriteriaId : 6CFC6B75-9057-4E58-A4D4-8AEC12AE62E4 (string)

vulnerable : true (boolean)

}

22 : { »

criteria : cpe:2.3:o:netbsd:netbsd:2.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 28BD9F91-2384-4557-9648-25FC00D04677 (string)

vulnerable : true (boolean)

}

23 : { »

criteria : cpe:2.3:o:netbsd:netbsd:3.0:*:*:*:*:*:*:* (string)

matchCriteriaId : F9CABFAA-594C-45D7-A0C7-795872A0C68A (string)

vulnerable : true (boolean)

}

24 : { »

criteria : cpe:2.3:o:netbsd:netbsd:3.0.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 4F9432E9-AACA-4242-BDAB-8792ACF72C12 (string)

vulnerable : true (boolean)

}

25 : { »

criteria : cpe:2.3:o:netbsd:netbsd:3.0.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 29C02C6B-AAFD-4594-94A4-F26BA3648CB0 (string)

vulnerable : true (boolean)

}

26 : { »

criteria : cpe:2.3:o:netbsd:netbsd:3.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 57C533D7-771E-4E33-A4FE-764C0B73F920 (string)

vulnerable : true (boolean)

}

27 : { »

criteria : cpe:2.3:o:netbsd:netbsd:4.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 9875E709-11BA-4B8F-A2FC-26844DD4D563 (string)

vulnerable : true (boolean)

}

28 : { »

criteria : cpe:2.3:o:netbsd:netbsd:4.0.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 49AF042F-5047-4FA2-B20C-65B2C6EBEA5C (string)

vulnerable : true (boolean)

}

29 : { »

criteria : cpe:2.3:o:netbsd:netbsd:5.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 00564BAA-066A-4627-B6A8-78724E55D363 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

cveTags : [ *empty* ]

descriptions : [ »

0 : { »

lang : en (string)

value : The kernel in NetBSD, probably 5.0.1 and earlier, on x86 platforms does not properly handle a pre-commit failure of the iret instruction, which might allow local users to gain privileges via vectors related to a tempEIP pseudocode variable that is outside of the code-segment limits. (string)

}

1 : { »

lang : es (string)

value : El kernel en NetBSD, posiblemente 5.0.1 y anteriores, en plataformas x86 no gestiona adecuadamente el fallo de preasignación de la instrucción "iret", lo que permitiría a usuarios locales conseguir privilegios a través de vectores relacionados con la variable de pseudocódigo tempEIP que esta fuera de los limites de segmento de código. (string)

}

]

id : CVE-2009-2793 (string)

lastModified : 2025-04-09T00:30:58.490 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : MEDIUM (string)

cvssData : { »

accessComplexity : LOW (string)

accessVector : LOCAL (string)

authentication : NONE (string)

availabilityImpact : PARTIAL (string)

baseScore : 4.6 (number)

confidentialityImpact : PARTIAL (string)

integrityImpact : PARTIAL (string)

vectorString : AV:L/AC:L/Au:N/C:P/I:P/A:P (string)

version : 2.0 (string)

}

exploitabilityScore : 3.9 (number)

impactScore : 6.4 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : true (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

}

published : 2009-09-18T22:30:00.530 (string)

references : [ »

0 : { »

source : cve@mitre.org (string)

url : http://www.securityfocus.com/archive/1/506531/100/0/threaded (string)

}

1 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.securityfocus.com/archive/1/506531/100/0/threaded (string)

}

]

sourceIdentifier : cve@mitre.org (string)

vulnStatus : Deferred (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-264 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

Metrics

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object