CVE-2009-1185 · threatengine.sh

Home/CVE/udev before 1.4.1 does not verify whether a NETLINK message originates from kernel space, which allows local users to ga

CVE

CVE-2009-1185

udev before 1.4.1 does not verify whether a NETLINK message originates from kernel space, which allows local users to ga

udev before 1.4.1 does not verify whether a NETLINK message originates from kernel space, which allows local users to gain privileges by sending a NETLINK message from user space.

HIGH · CVSS 7.2 EPSS 0.89509

Act now

EPSS ≥ 0.50 - high probability of exploitation in the next 30 days
EPSS percentile: top 0% of all CVEs by exploitation likelihood
Public exploit or PoC is available
CVSS base score ≥ 7.0

Sigma rules0 YARA rules0

⬡

Weakness Classification

CWE-346Origin Validation Error

▤

Affected Products & Versions

10

udev project udev< 141
suse linux enterprise debuginfoall versions
opensuseall versions
suse linux enterprise desktopall versions
suse linux enterprise serverall versions
debian linuxall versions
canonical ubuntu linuxall versions
fedoraproject fedoraall versions
Show all 10 affected productsjuniper ctpview< 7.1
juniper ctpviewall versions

⚠

Public Exploits & PoCs

4

localLinux Kernel UDEV < 1.4.1 - 'Netlink' Local Privilege Escalation (Metasploit)verified
localLinux Kernel 2.6 (Gentoo / Ubuntu 8.10/9.04) UDEV < 1.4.1 - Local Privilege Escalation (2)verified
localLinux Kernel 2.6 (Debian 4.0 / Ubuntu / Gentoo) UDEV < 1.4.1 - Local Privilege Escalation (1)verified
pocwww.exploit-db.com · 8572www.exploit-db.com

▣

Scoring & Timeline

7.2

HIGH · CVSS v2 (legacy) · secalert@redhat.com

View on NVD

This CVE predates CVSS v3; the legacy v2 score is shown so triage still has a severity to work with.

v2 Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Published to NVD17 Apr 2009 · 02:30 PM

⚑

Vendor Advisories

2

rhsaRHSA-2009:0427Important

🔗

References & Sources

38

Source URLs (vendor pages, mailing lists, write-ups). Exploit/PoC links are in their own section above to avoid duplication.

http://git.kernel.org/?p=linux/hotplug/udev.git

http://git.kernel.org/?p=linux/hotplug/udev.git

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10691Third Party Advisory

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00006.htmlMailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00012.htmlMailing ListThird Party Advisory

Show all 38 references

http://lists.vmware.com/pipermail/security-announce/2009/000060.htmlThird Party Advisory

http://secunia.com/advisories/34731Not Applicable

http://secunia.com/advisories/34750Not Applicable

http://secunia.com/advisories/34753Not Applicable

http://secunia.com/advisories/34771Not Applicable

http://secunia.com/advisories/34776Not Applicable

http://secunia.com/advisories/34785Not Applicable

http://secunia.com/advisories/34787Not Applicable

http://secunia.com/advisories/34801Not Applicable

http://secunia.com/advisories/35766Not Applicable

http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.446399Mailing ListThird Party Advisory

http://wiki.rpath.com/Advisories:rPSA-2009-0063Broken Link

http://wiki.rpath.com/wiki/Advisories:rPSA-2009-0063Broken Link

http://www.debian.org/security/2009/dsa-1772Third Party Advisory

http://www.gentoo.org/security/en/glsa/glsa-200904-18.xmlThird Party Advisory

http://www.mandriva.com/security/advisories?name=MDVSA-2009:103Broken Link

http://www.mandriva.com/security/advisories?name=MDVSA-2009:104Broken Link

http://www.redhat.com/support/errata/RHSA-2009-0427.htmlThird Party Advisory

http://www.securityfocus.com/archive/1/502752/100/0/threadedThird Party AdvisoryVDB Entry

http://www.securityfocus.com/archive/1/504849/100/0/threadedThird Party AdvisoryVDB Entry

http://www.securityfocus.com/bid/34536Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id?1022067Broken LinkThird Party AdvisoryVDB Entry

http://www.ubuntu.com/usn/usn-758-1Third Party Advisory

http://www.vmware.com/security/advisories/VMSA-2009-0009.htmlThird Party Advisory

http://www.vupen.com/english/advisories/2009/1053Permissions Required

http://www.vupen.com/english/advisories/2009/1865Permissions Required

https://bugzilla.redhat.com/show_bug.cgi?id=495051Issue TrackingPatchThird Party Advisory

https://launchpad.net/bugs/cve/2009-1185Issue TrackingThird Party Advisory

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10925Broken Link

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5975Third Party Advisory

https://www.redhat.com/archives/fedora-package-announce/2009-April/msg00462.htmlMailing ListThird Party Advisory

https://www.redhat.com/archives/fedora-package-announce/2009-April/msg00463.htmlMailing ListThird Party Advisory

Intelligence Graph · click any node to traverse

CVETechnique ActorTool Family

drag to reposition · click any node to traverse · button top-right enlarges

External lookups - second-class, for what we don’t hold ourselves

NVD CVE.org CISA Vulners Exploit-DB GitHub PoC VulnCheck KEV GreyNoise

Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities

Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs

Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures

Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1

About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service

threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin