Vulnerability Details : CVE-2009-2707
Unspecified vulnerability in ia32el (aka the IA 32 emulation functionality) before 7042_7022-0.4.2 in SUSE Linux Enterprise (SLE) 10 SP2 on Itanium IA64 machines allows local users to cause a denial of service (system crash) via a 32-bit x86 application.
Vulnerability category: Denial of service
Products affected by CVE-2009-2707
- cpe:2.3:o:novell:suse_linux_enterprise_server:10:sp2:itanium_ia64:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2009-2707
0.05%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 17 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2009-2707
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.9
|
MEDIUM | AV:L/AC:L/Au:N/C:N/I:N/A:C |
3.9
|
6.9
|
NIST |
Vendor statements for CVE-2009-2707
-
Red Hat 2009-09-23Not vulnerable. This issue did not affect the versions of ia32el as shipped with Red Hat Enterprise Linux 3, 4 or 5.
References for CVE-2009-2707
-
http://support.novell.com/security/cve/CVE-2009-2707.html
-
https://bugs.launchpad.net/bugs/cve/2009-2707
-
http://lists.opensuse.org/opensuse-security-announce/2009-09/msg00001.html
[security-announce] SUSE Security Summary Report: SUSE-SR:2009:015 - openSUSE Security Announce - openSUSE Mailing Lists
-
https://bugzilla.novell.com/show_bug.cgi?id=521524
-
http://www.securityfocus.com/bid/36393
Jump to