CVE-2009-2707 - Unspecified vulnerability in ia32el (aka the IA 32 emulation functionality) before 7042_7022-0.4.2 i

CVE-2009-2707

Summary

Unspecified vulnerability in ia32el (aka the IA 32 emulation functionality) before 7042_7022-0.4.2 in SUSE Linux Enterprise (SLE) 10 SP2 on Itanium IA64 machines allows local users to cause a denial of service (system crash) via a 32-bit x86 application.

References

Vulnerable Configurations

cpe:2.3:o:novell:suse_linux_enterprise_server:10:sp2:itanium_ia64:*:*:*:*:*
cpe:2.3:o:novell:suse_linux_enterprise_server:10:sp2:itanium_ia64:*:*:*:*:*

CVSS

Base:	4.9 (as of 18-09-2009 - 10:30)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	COMPLETE

cvss-vector via4

AV:L/AC:L/Au:N/C:N/I:N/A:C

refmap via4

bid	36393
confirm	http://support.novell.com/security/cve/CVE-2009-2707.html https://bugzilla.novell.com/show_bug.cgi?id=521524
misc	https://bugs.launchpad.net/bugs/cve/2009-2707
suse	SUSE-SR:2009:015

statements via4

contributor	Tomas Hoger
lastmodified	2009-09-23
organization	Red Hat
statement	Not vulnerable. This issue did not affect the versions of ia32el as shipped with Red Hat Enterprise Linux 3, 4 or 5.

Last major update

18-09-2009 - 10:30

Published

18-09-2009 - 10:30

Last modified

18-09-2009 - 10:30