// For flags

CVE-2009-1633

kernel: cifs: fix potential buffer overruns when converting unicode strings sent by server

Severity Score

7.1
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Multiple buffer overflows in the cifs subsystem in the Linux kernel before 2.6.29.4 allow remote CIFS servers to cause a denial of service (memory corruption) and possibly have unspecified other impact via (1) a malformed Unicode string, related to Unicode string area alignment in fs/cifs/sess.c; or (2) long Unicode characters, related to fs/cifs/cifssmb.c and the cifs_readdir function in fs/cifs/readdir.c.

Múltiples desbordamientos de búfer en el subsistema cifs en el kernel de Linux anterior a v2.6.29.4 permite a servidores remotos CIFS provocar una denegación de servicio (corrupción de memoria) y posiblemente tener otros impactos sin identificar a través de (1) una cadena Unicode mal formada, relacionado con el área de alineación de cadena Unicode en fs/cifs/sess.c; o (2) carateres largos _Unicode, relacionado con fs/cifs/cifssmb.c y la función cifs_readdir en fs/cifs/readdir.c.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
None
Integrity
None
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2009-05-14 CVE Reserved
  • 2009-05-28 CVE Published
  • 2023-11-26 EPSS Updated
  • 2024-08-07 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (39)
URL Tag Source
http://git.kernel.org/?p=linux/kernel/git/sfrench/cifs-2.6.git%3Ba=commit%3Bh=7b0c8fcff47a885743125dd843db64af41af5a61 X_refsource_confirm
http://git.kernel.org/?p=linux/kernel/git/sfrench/cifs-2.6.git%3Ba=commit%3Bh=968460ebd8006d55661dec0fb86712b40d71c413 X_refsource_confirm
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=27b87fe52baba0a55e9723030e76fce94fabcea4 X_refsource_confirm
http://marc.info/?l=oss-security&m=124099284225229&w=2 Mailing List
http://marc.info/?l=oss-security&m=124099371726547&w=2 Mailing List
http://secunia.com/advisories/35217 Third Party Advisory
http://secunia.com/advisories/35226 Third Party Advisory
http://secunia.com/advisories/35298 Third Party Advisory
http://secunia.com/advisories/35656 Third Party Advisory
http://secunia.com/advisories/35847 Third Party Advisory
http://secunia.com/advisories/36051 Third Party Advisory
http://secunia.com/advisories/36327 Third Party Advisory
http://secunia.com/advisories/37351 Third Party Advisory
http://secunia.com/advisories/37471 Third Party Advisory
http://wiki.rpath.com/Advisories:rPSA-2009-0111 Broken Link
http://www.securityfocus.com/archive/1/505254/100/0/threaded Mailing List
http://www.securityfocus.com/archive/1/507985/100/0/threaded Mailing List
http://www.securityfocus.com/bid/34612 Third Party Advisory
http://www.vmware.com/security/advisories/VMSA-2009-0016.html Third Party Advisory
http://www.vupen.com/english/advisories/2009/3316 Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8588 Signature
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9525 Signature
URL Date SRC
URL Date SRC
http://www.openwall.com/lists/oss-security/2009/05/14/1 2023-11-07
http://www.openwall.com/lists/oss-security/2009/05/14/4 2023-11-07
http://www.openwall.com/lists/oss-security/2009/05/15/2 2023-11-07
https://bugzilla.redhat.com/show_bug.cgi?id=496572 2009-08-13
https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01126.html 2023-11-07
URL Date SRC
http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00005.html 2023-11-07
http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00007.html 2023-11-07
http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00005.html 2023-11-07
http://www.debian.org/security/2009/dsa-1809 2023-11-07
http://www.debian.org/security/2009/dsa-1844 2023-11-07
http://www.debian.org/security/2009/dsa-1865 2023-11-07
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.29.4 2023-11-07
http://www.mandriva.com/security/advisories?name=MDVSA-2009:148 2023-11-07
http://www.redhat.com/support/errata/RHSA-2009-1157.html 2023-11-07
http://www.ubuntu.com/usn/usn-793-1 2023-11-07
https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01271.html 2023-11-07
https://access.redhat.com/security/cve/CVE-2009-1633 2009-08-13
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Linux
Search vendor "Linux"
 Linux Kernel
Search vendor "Linux" for product "Linux Kernel"
 < 2.6.29.4
Search vendor "Linux" for product "Linux Kernel" and version " < 2.6.29.4"
-
Affected
Debian
Search vendor "Debian"
 Debian Linux
Search vendor "Debian" for product "Debian Linux"
 4.0
Search vendor "Debian" for product "Debian Linux" and version "4.0"
-
Affected
Debian
Search vendor "Debian"
 Debian Linux
Search vendor "Debian" for product "Debian Linux"
 5.0
Search vendor "Debian" for product "Debian Linux" and version "5.0"
-
Affected
Canonical
Search vendor "Canonical"
 Ubuntu Linux
Search vendor "Canonical" for product "Ubuntu Linux"
 6.06
Search vendor "Canonical" for product "Ubuntu Linux" and version "6.06"
lts
Affected
Canonical
Search vendor "Canonical"
 Ubuntu Linux
Search vendor "Canonical" for product "Ubuntu Linux"
 8.04
Search vendor "Canonical" for product "Ubuntu Linux" and version "8.04"
lts
Affected
Canonical
Search vendor "Canonical"
 Ubuntu Linux
Search vendor "Canonical" for product "Ubuntu Linux"
 8.10
Search vendor "Canonical" for product "Ubuntu Linux" and version "8.10"
-
Affected
Canonical
Search vendor "Canonical"
 Ubuntu Linux
Search vendor "Canonical" for product "Ubuntu Linux"
 9.04
Search vendor "Canonical" for product "Ubuntu Linux" and version "9.04"
-
Affected