NVD

Id
41265  
Name
CVE-2013-6123  
Description
Multiple array index errors in drivers/media/video/msm/server/msm_cam_server.c in the MSM camera driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allow attackers to gain privileges by leveraging camera device-node access, related to the (1) msm_ctrl_cmd_done, (2) msm_ioctl_server, and (3) msm_server_send_ctrl functions.  
Reject
 
CVSS Version
2  
CVSS Score
6.9  
Severity
Medium  
CVSS Base Score
6.9  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
3.4  
CVSS Vector
(AV:L/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-18  
Published
2014-01-13  
Modified Date
2014-01-27  
Seq
2013-6123  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
208832 41265 CVE-2013-6123 code-aurora-cve20136123-priv-esc(90505)  View
208833 41265 CVE-2013-6123 https://www.codeaurora.org/cgit/quic/la//kernel/msm/commit/?id=60e4af06161d91d5aeaa04c7d6e9f4345a6acdd4  View
208834 41265 CVE-2013-6123 https://www.codeaurora.org/cgit/quic/la//kernel/msm/commit/?id=7beb04ea945a7178e61d935918d3cb152996b558  View
208835 41265 CVE-2013-6123 https://www.codeaurora.org/projects/security-advisories/out-bounds-array-access-camera-driver-cve-2013-6123  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
24271 JVNDB-2013-005846 MSM デバイス用 Qualcomm Innovation Center Android コントリビューションなどで使用される Linux Kernel 用 MSM カメラドライバにおける権限を取得される脆弱性 MSM デバイス用 Qualcomm Innovation Center (QuIC) Android コントリビューション、およびその他の製品で使用される Linux Kernel 3.x 用 MSM カメラドライバの drivers/media/video/msm/server/msm_cam_server.c には、以下に関する処理に不備があるため、配列のインデックスエラーにより、権限を取得される脆弱性が存在します。 CVE-2013-6123 66065 CVE-2013-6123 41265 6.9 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-005846.html 2013-10-11 2014-01-16 View