CVE-2014-0004
udisks2: stack-based buffer overflow when handling long path names
Severity Score
7.8
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Stack-based buffer overflow in udisks before 1.0.5 and 2.x before 2.1.3 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a long mount point.
Desbordamiento de buffer basado en pila en udisks anterior a 1.0.5 y 2.x anterior a 2.1.3 permite a usuarios locales causar una denegación de servicio (caída) y posiblemente ejecutar código arbitrario a través de un punto de montaje largo.
The udisks package provides a daemon, a D-Bus API, and command line utilities for managing disks and storage devices. A stack-based buffer overflow flaw was found in the way udisks handled files with long path names. A malicious, local user could use this flaw to create a specially crafted directory structure that, when processed by the udisks daemon, could lead to arbitrary code execution with the privileges of the udisks daemon. This issue was discovered by Florian Weimer of the Red Hat Product Security Team.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2013-12-03 CVE Reserved
- 2014-03-10 CVE Published
- 2024-08-06 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
- CWE-121: Stack-based Buffer Overflow
CAPEC
References (10)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/66081 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://lists.freedesktop.org/archives/devkit-devel/2014-March/001568.html | 2023-02-13 |
| URL | Date | SRC |
|---|---|---|
| http://lists.opensuse.org/opensuse-updates/2014-03/msg00051.html | 2023-02-13 | |
| http://lists.opensuse.org/opensuse-updates/2014-03/msg00052.html | 2023-02-13 | |
| http://lists.opensuse.org/opensuse-updates/2014-03/msg00053.html | 2023-02-13 | |
| http://rhn.redhat.com/errata/RHSA-2014-0293.html | 2023-02-13 | |
| http://www.debian.org/security/2014/dsa-2872 | 2023-02-13 | |
| http://www.ubuntu.com/usn/USN-2142-1 | 2023-02-13 | |
| https://access.redhat.com/security/cve/CVE-2014-0004 | 2014-03-13 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=1049703 | 2014-03-13 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Freedesktop Search vendor "Freedesktop" | Udisks Search vendor "Freedesktop" for product "Udisks" | <= 1.0.4 Search vendor "Freedesktop" for product "Udisks" and version " <= 1.0.4" | - |
Affected
| ||||||
| Freedesktop Search vendor "Freedesktop" | Udisks Search vendor "Freedesktop" for product "Udisks" | 1.0 Search vendor "Freedesktop" for product "Udisks" and version "1.0" | - |
Affected
| ||||||
| Freedesktop Search vendor "Freedesktop" | Udisks Search vendor "Freedesktop" for product "Udisks" | 1.0.1 Search vendor "Freedesktop" for product "Udisks" and version "1.0.1" | - |
Affected
| ||||||
| Freedesktop Search vendor "Freedesktop" | Udisks Search vendor "Freedesktop" for product "Udisks" | 2.0.0 Search vendor "Freedesktop" for product "Udisks" and version "2.0.0" | - |
Affected
| ||||||
| Freedesktop Search vendor "Freedesktop" | Udisks Search vendor "Freedesktop" for product "Udisks" | 2.0.1 Search vendor "Freedesktop" for product "Udisks" and version "2.0.1" | - |
Affected
| ||||||
| Freedesktop Search vendor "Freedesktop" | Udisks Search vendor "Freedesktop" for product "Udisks" | 2.0.90 Search vendor "Freedesktop" for product "Udisks" and version "2.0.90" | - |
Affected
| ||||||
| Freedesktop Search vendor "Freedesktop" | Udisks Search vendor "Freedesktop" for product "Udisks" | 2.0.91 Search vendor "Freedesktop" for product "Udisks" and version "2.0.91" | - |
Affected
| ||||||
| Freedesktop Search vendor "Freedesktop" | Udisks Search vendor "Freedesktop" for product "Udisks" | 2.0.92 Search vendor "Freedesktop" for product "Udisks" and version "2.0.92" | - |
Affected
| ||||||
| Freedesktop Search vendor "Freedesktop" | Udisks Search vendor "Freedesktop" for product "Udisks" | 2.1.0 Search vendor "Freedesktop" for product "Udisks" and version "2.1.0" | - |
Affected
| ||||||
| Freedesktop Search vendor "Freedesktop" | Udisks Search vendor "Freedesktop" for product "Udisks" | 2.1.1 Search vendor "Freedesktop" for product "Udisks" and version "2.1.1" | - |
Affected
| ||||||
| Freedesktop Search vendor "Freedesktop" | Udisks Search vendor "Freedesktop" for product "Udisks" | 2.1.2 Search vendor "Freedesktop" for product "Udisks" and version "2.1.2" | - |
Affected
| ||||||
| Canonical Search vendor "Canonical" | Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux" | 12.04 Search vendor "Canonical" for product "Ubuntu Linux" and version "12.04" | lts |
Affected
| ||||||
| Canonical Search vendor "Canonical" | Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux" | 12.10 Search vendor "Canonical" for product "Ubuntu Linux" and version "12.10" | - |
Affected
| ||||||
| Canonical Search vendor "Canonical" | Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux" | 13.10 Search vendor "Canonical" for product "Ubuntu Linux" and version "13.10" | - |
Affected
| ||||||