2.1.3 : Security Vulnerabilities

Cpe Name:cpe:/a:gnu:glibc:2.1.3

CVSS Scores Greater Than: 0 1 2 3 4 5 6 7 8 9

Sort Results By : Cve Number Descending Cve Number Ascending CVSS Score Descending Number Of Exploits Descending

Copy Results Download Results Select Table

#	CVE ID	CWE ID	# of Exploits	Vulnerability Type(s)	Publish Date	Update Date	Score	Gained Access Level	Access	Complexity	Authentication	Conf.	Integ.	Avail.
1	CVE-2011-4609	399		DoS	2013-05-02	2013-05-03	5.0	None	Remote	Low	Not required	None	None	Partial
The svc_run function in the RPC implementation in glibc before 2.15 allows remote attackers to cause a denial of service (CPU consumption) via a large number of RPC connections.
2	CVE-2011-1659	189		DoS Overflow	2011-04-08	2012-01-18	5.0	None	Remote	Low	Not required	None	None	Partial
Integer overflow in posix/fnmatch.c in the GNU C Library (aka glibc or libc6) 2.13 and earlier allows context-dependent attackers to cause a denial of service (application crash) via a long UTF8 string that is used in an fnmatch call with a crafted pattern argument, a different vulnerability than CVE-2011-1071.
3	CVE-2011-1658	264		+Priv	2011-04-08	2011-10-25	3.7	None	Local	High	Not required	Partial	Partial	Partial
ld.so in the GNU C Library (aka glibc or libc6) 2.13 and earlier expands the $ORIGIN dynamic string token when RPATH is composed entirely of this token, which might allow local users to gain privileges by creating a hard link in an arbitrary directory to a (1) setuid or (2) setgid program with this RPATH value, and then executing the program with a crafted value for the LD_PRELOAD environment variable, a different vulnerability than CVE-2010-3847 and CVE-2011-0536. NOTE: it is not expected that any standard operating-system distribution would ship an applicable setuid or setgid program.
4	CVE-2011-1095	264		+Priv	2011-04-09	2012-01-26	6.2	None	Local	High	Not required	Complete	Complete	Complete
locale/programs/locale.c in locale in the GNU C Library (aka glibc or libc6) before 2.13 does not quote its output, which might allow local users to gain privileges via a crafted localization environment variable, in conjunction with a program that executes a script that uses the eval function.
5	CVE-2011-1089	16			2011-04-09	2012-01-18	3.3	None	Local	Medium	Not required	Partial	Partial	None
The addmntent function in the GNU C Library (aka glibc or libc6) 2.13 and earlier does not report an error status for failed attempts to write to the /etc/mtab file, which makes it easier for local users to trigger corruption of this file, as demonstrated by writes from a process with a small RLIMIT_FSIZE value, a different vulnerability than CVE-2010-0296.
6	CVE-2011-1071	399		DoS Exec Code	2011-04-08	2012-01-26	5.1	None	Remote	High	Not required	Partial	Partial	Partial
The GNU C Library (aka glibc or libc6) before 2.12.2 and Embedded GLIBC (EGLIBC) allow context-dependent attackers to execute arbitrary code or cause a denial of service (memory consumption) via a long UTF8 string that is used in an fnmatch call, aka a "stack extension attack," a related issue to CVE-2010-2898, CVE-2010-1917, and CVE-2007-4782, as originally reported for use of this library by Google Chrome.
7	CVE-2010-4052	399	1	DoS	2011-01-13	2011-07-19	5.0	None	Remote	Low	Not required	None	None	Partial
Stack consumption vulnerability in the regcomp implementation in the GNU C Library (aka glibc or libc6) through 2.11.3, and 2.12.x through 2.12.2, allows context-dependent attackers to cause a denial of service (resource exhaustion) via a regular expression containing adjacent repetition operators, as demonstrated by a {10,}{10,}{10,}{10,} sequence in the proftpd.gnu.c exploit for ProFTPD.
8	CVE-2010-4051		1	DoS Overflow Bypass	2011-01-13	2011-02-02	5.0	None	Remote	Low	Not required	None	None	Partial
The regcomp implementation in the GNU C Library (aka glibc or libc6) through 2.11.3, and 2.12.x through 2.12.2, allows context-dependent attackers to cause a denial of service (application crash) via a regular expression containing adjacent bounded repetitions that bypass the intended RE_DUP_MAX limitation, as demonstrated by a {10,}{10,}{10,}{10,}{10,} sequence in the proftpd.gnu.c exploit for ProFTPD, related to a "RE_DUP_MAX overflow."
9	CVE-2010-3856	264		+Priv	2011-01-07	2011-02-12	7.2	None	Local	Low	Not required	Complete	Complete	Complete
ld.so in the GNU C Library (aka glibc or libc6) before 2.11.3, and 2.12.x before 2.12.2, does not properly restrict use of the LD_AUDIT environment variable to reference dynamic shared objects (DSOs) as audit objects, which allows local users to gain privileges by leveraging an unsafe DSO located in a trusted library directory, as demonstrated by libpcprofile.so.
10	CVE-2010-3847	59		+Priv	2011-01-07	2011-03-07	6.9	None	Local	Medium	Not required	Complete	Complete	Complete
elf/dl-load.c in ld.so in the GNU C Library (aka glibc or libc6) through 2.11.2, and 2.12.x through 2.12.1, does not properly handle a value of $ORIGIN for the LD_AUDIT environment variable, which allows local users to gain privileges via a crafted dynamic shared object (DSO) located in an arbitrary directory.
11	CVE-2010-0830	189		Exec Code	2010-06-01	2011-01-12	5.1	None	Remote	High	Not required	Partial	Partial	Partial
Integer signedness error in the elf_get_dynamic_info function in elf/dynamic-link.h in ld.so in the GNU C Library (aka glibc or libc6) 2.0.1 through 2.11.1, when the --verify option is used, allows user-assisted remote attackers to execute arbitrary code via a crafted ELF program with a negative value for a certain d_tag structure member in the ELF header.
12	CVE-2010-0296	20		DoS +Priv	2010-06-01	2011-10-25	7.2	None	Local	Low	Not required	Complete	Complete	Complete
The encode_name macro in misc/mntent_r.c in the GNU C Library (aka glibc or libc6) 2.11.1 and earlier, as used by ncpmount and mount.cifs, does not properly handle newline characters in mountpoint names, which allows local users to cause a denial of service (mtab corruption), or possibly modify mount options and gain privileges, via a crafted mount request.
13	CVE-2009-5064	264		+Priv	2011-03-30	2012-01-18	6.9	None	Local	Medium	Not required	Complete	Complete	Complete
DISPUTED ldd in the GNU C Library (aka glibc or libc6) 2.13 and earlier allows local users to gain privileges via a Trojan horse executable file linked with a modified loader that omits certain LD_TRACE_LOADED_OBJECTS checks. NOTE: the GNU C Library vendor states "This is just nonsense. There are a gazillion other ways to introduce code if people are downloading arbitrary binaries and install them in appropriate directories or set LD_LIBRARY_PATH etc."
14	CVE-2009-5029	189		DoS Exec Code Overflow	2013-05-02	2013-05-03	6.8	None	Remote	Medium	Not required	Partial	Partial	Partial
Integer overflow in the __tzfile_read function in glibc before 2.15 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted timezone (TZ) file, as demonstrated using vsftpd.
15	CVE-2009-4881	189		DoS Overflow	2010-06-01	2011-01-12	5.0	None	Remote	Low	Not required	None	None	Partial
Integer overflow in the __vstrfmon_l function in stdlib/strfmon_l.c in the strfmon implementation in the GNU C Library (aka glibc or libc6) before 2.10.1 allows context-dependent attackers to cause a denial of service (application crash) via a crafted format string, as demonstrated by the %99999999999999999999n string, a related issue to CVE-2008-1391.
16	CVE-2009-4880	189		DoS Overflow	2010-06-01	2011-01-12	5.0	None	Remote	Low	Not required	None	None	Partial
Multiple integer overflows in the strfmon implementation in the GNU C Library (aka glibc or libc6) 2.10.1 and earlier allow context-dependent attackers to cause a denial of service (memory consumption or application crash) via a crafted format string, as demonstrated by a crafted first argument to the money_format function in PHP, a related issue to CVE-2008-1391.
17	CVE-2004-1453				2004-12-31	2010-08-21	2.1	None	Local	Low	Not required	Partial	None	None
GNU glibc 2.3.4 before 2.3.4.20040619, 2.3.3 before 2.3.3.20040420, and 2.3.2 before 2.3.2-r10 does not restrict the use of LD_DEBUG for a setuid program, which allows local users to gain sensitive information, such as the list of symbols used by the program.
18	CVE-2004-1382				2004-12-31	2008-09-10	2.1	None	Local	Low	Not required	None	Partial	None
The glibcbug script in glibc 2.3.4 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files, a different vulnerability than CVE-2004-0968.
19	CVE-2004-0968				2005-02-09	2010-08-21	2.1	None	Local	Low	Not required	None	Partial	None
The catchsegv script in glibc 2.3.2 and earlier allows local users to overwrite files via a symlink attack on temporary files.
20	CVE-2003-0028			Exec Code Overflow	2003-03-25	2008-09-10	7.5	User	Remote	Low	Not required	Partial	Partial	Partial
Integer overflow in the xdrmem_getbytes() function, and possibly other functions, of XDR (external data representation) libraries derived from SunRPC, including libnsl, libc, glibc, and dietlibc, allows remote attackers to execute arbitrary code via certain integer values in length fields, a different vulnerability than CVE-2002-0391.
21	CVE-2002-1265			DoS	2002-11-12	2008-09-05	5.0	None	Remote	Low	Not required	None	None	Partial
The Sun RPC functionality in multiple libc implementations does not provide a time-out mechanism when reading data from TCP connections, which allows remote attackers to cause a denial of service (hang).
22	CVE-2000-0335				2000-05-03	2008-09-10	7.5	User	Remote	Low	Not required	Partial	Partial	Partial
The resolver in glibc 2.1.3 uses predictable IDs, which allows a local attacker to spoof DNS query results.

Total number of vulnerabilities : 22 Page : 1 (This Page)