NVD

Id
39352  
Name
CVE-2013-3582  
Description
Buffer overflow in Dell BIOS on Dell Latitude D###, E####, XT2, and Z600 devices, and Dell Precision M#### devices, allows local users to bypass intended BIOS signing requirements and install arbitrary BIOS images by leveraging administrative privileges and providing a crafted rbu_packet.pktNum value in conjunction with a crafted rbu_packet.pktSize value.  
Reject
 
CVSS Version
2  
CVSS Score
7.6  
Severity
High  
CVSS Base Score
7.6  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
4.9  
CVSS Vector
(AV:N/AC:H/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-18  
Published
2013-08-28  
Modified Date
2013-10-07  
Seq
2013-3582  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
200822 39352 CVE-2013-3582 VU#912156  View
200823 39352 CVE-2013-3582 http://www.kb.cert.org/vuls/id/BLUU-99HSLA  View
200824 39352 CVE-2013-3582 https://media.blackhat.com/us-13/US-13-Butterworth-BIOS-Security-Slides.pdf  View
200825 39352 CVE-2013-3582 https://media.blackhat.com/us-13/US-13-Butterworth-BIOS-Security-WP.pdf  View
200826 39352 CVE-2013-3582 https://www.blackhat.com/us-13/archives.html#Butterworth  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
22187 JVNDB-2013-003762 Dell の BIOS 更新処理にバッファオーバーフローの脆弱性 Dell が提供する複数の Latitude Laptop および Precision Mobile Workstation の BIOS 更新処理に、バッファオーバーフローの脆弱性が存在します。 CVE-2013-3582 63524 CVE-2013-3582 39352 7.6 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-003762.html 2013-08-16 2013-08-29 View