Trusted Design

• 重大度: Unknown
• 公開日: 2013-11-19
• 更新日: 2025-10-22

概要

The (1) get_user and (2) put_user API functions in the Linux kernel before 3.5.5 on the v6k and v7 ARM platforms do not validate certain addresses, which allows attackers to read or modify the contents of arbitrary kernel memory locations via a crafted application, as exploited in the wild against Android devices in October and November 2013.

このCVEに関連するMITRE ATT&CKテクニック

• T1557 - Adversary-in-the-Middle
• T1033 - System Owner/User Discovery
• T1556.003 - Pluggable Authentication Modules
• T1171 - LLMNR/NBT-NS Poisoning and Relay
• T1514 - Elevated Execution with Prompt
• T1588.004 - Digital Certificates
• T1583.002 - DNS Server
• T1484.002 - Trust Modification
• T1213.006 - Databases
• T1598.003 - Spearphishing Link
• T1003.007 - Proc Filesystem
• T1583.005 - Botnet
• T1106 - Native API
• T1608.001 - Upload Malware
• T1190 - Exploit Public-Facing Application
• T1558 - Steal or Forge Kerberos Tickets
• T1050 - New Service
• T1518.002 - Backup Software Discovery
• T1029 - Scheduled Transfer
• T1525 - Implant Internal Image
• T1602.002 - Network Device Configuration Dump
• T1589 - Gather Victim Identity Information
• T1145 - Private Keys
• T1555.003 - Credentials from Web Browsers
• T1563 - Remote Service Session Hijacking
• T1179 - Hooking
• T1598.004 - Spearphishing Voice
• T1055.013 - Process Doppelgänging
• T1546.008 - Accessibility Features
• T1083 - File and Directory Discovery
• T1649 - Steal or Forge Authentication Certificates
• T1051 - Shared Webroot
• T1218.005 - Mshta
• T1497.002 - User Activity Based Checks
• T1606 - Forge Web Credentials
• T1055.014 - VDSO Hijacking
• T1071.002 - File Transfer Protocols
• T1679 - Selective Exclusion
• T1574.013 - KernelCallbackTable
• T1219.003 - Remote Access Hardware
• T1562.001 - Disable or Modify Tools
• T1559 - Inter-Process Communication
• T1584.006 - Web Services
• T1601 - Modify System Image
• T1486 - Data Encrypted for Impact
• T1548.004 - Elevated Execution with Prompt
• T1587.004 - Exploits
• T1595.003 - Wordlist Scanning
• T1028 - Windows Remote Management
• T1553.004 - Install Root Certificate
• T1499 - Endpoint Denial of Service
• T1027.004 - Compile After Delivery
• T1070.010 - Relocate Malware
• T1213.003 - Code Repositories
• T1565.002 - Transmitted Data Manipulation
• T1003.008 - /etc/passwd and /etc/shadow
• T1543.001 - Launch Agent
• T1159 - Launch Agent
• T1538 - Cloud Service Dashboard
• T1055.008 - Ptrace System Calls
• T1173 - Dynamic Data Exchange
• T1086 - PowerShell
• T1056.004 - Credential API Hooking

このCVEが関連しているPulses

このCVEが関連しているPulsesはありません。

CVEの関係性グラフ

---

← CVE一覧に戻る