Russian Vulnerability Scanner Database

Back to List

CVE-2014-7187

Scores

EPSS

0.899high89.9%
0%20%40%60%80%100%

Percentile: 89.9%

CVSS

4.6medium2.0
0246810

CVSS Score: 4.6/10

All CVSS Scores

CVSS 2.0
4.6

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

Description

Off-by-one error in the read_token_word function in parse.y in GNU Bash through 4.3 bash43-026 allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) or possibly have unspecified other impact via deeply nested for loops, aka the “word_lineno” issue.

Scaner-VS 7 — a modern vulnerability management solution

Uses this database for vulnerability detection. High-speed search, cross-platform, advanced configuration audit, and flexible filtering. Suitable for organizations of any size.
Learn more about Scaner-VS 7

Sources

debiannvdredhatubuntu

CWEs

CWE-119CWE-193

Related Vulnerabilities

BDU:2014-00320BDU:2015-05950BDU:2015-05951BDU:2015-05952BDU:2015-05953BDU:2015-05954BDU:2015-05955BDU:2015-05956BDU:2015-05957BDU:2015-05958BDU:2015-06152BDU:2015-06153BDU:2015-06154BDU:2015-06155BDU:2015-06156BDU:2015-06157BDU:2015-06158BDU:2015-06159BDU:2015-06160BDU:2015-09245BDU:2015-09246BDU:2015-09247BDU:2015-09248BDU:2015-09249BDU:2015-09250BDU:2015-09251BDU:2015-09252BDU:2015-09253BDU:2015-09794

Exploits

Exploit ID: 34765

Source: exploitdb

URL: https://www.exploit-db.com/exploits/34765

Exploit ID: 34766

Source: exploitdb

URL: https://www.exploit-db.com/exploits/34766

Exploit ID: 34777

Source: exploitdb

URL: https://www.exploit-db.com/exploits/34777

Exploit ID: 34839

Source: exploitdb

URL: https://www.exploit-db.com/exploits/34839

Exploit ID: 34860

Source: exploitdb

URL: https://www.exploit-db.com/exploits/34860

Exploit ID: 34862

Source: exploitdb

URL: https://www.exploit-db.com/exploits/34862

Exploit ID: 34879

Source: exploitdb

URL: https://www.exploit-db.com/exploits/34879

Exploit ID: 34895

Source: exploitdb

URL: https://www.exploit-db.com/exploits/34895

Exploit ID: 34896

Source: exploitdb

URL: https://www.exploit-db.com/exploits/34896

Exploit ID: 34900

Source: exploitdb

URL: https://www.exploit-db.com/exploits/34900

Exploit ID: 35081

Source: exploitdb

URL: https://www.exploit-db.com/exploits/35081

Exploit ID: 35115

Source: exploitdb

URL: https://www.exploit-db.com/exploits/35115

Exploit ID: 35146

Source: exploitdb

URL: https://www.exploit-db.com/exploits/35146

Exploit ID: 36503

Source: exploitdb

URL: https://www.exploit-db.com/exploits/36503

Exploit ID: 36504

Source: exploitdb

URL: https://www.exploit-db.com/exploits/36504

Exploit ID: 36609

Source: exploitdb

URL: https://www.exploit-db.com/exploits/36609

Exploit ID: 36933

Source: exploitdb

URL: https://www.exploit-db.com/exploits/36933

Exploit ID: 37816

Source: exploitdb

URL: https://www.exploit-db.com/exploits/37816

Exploit ID: 38849

Source: exploitdb

URL: https://www.exploit-db.com/exploits/38849

Exploit ID: 39568

Source: exploitdb

URL: https://www.exploit-db.com/exploits/39568

Exploit ID: 39887

Source: exploitdb

URL: https://www.exploit-db.com/exploits/39887

Exploit ID: 39918

Source: exploitdb

URL: https://www.exploit-db.com/exploits/39918

Exploit ID: 40619

Source: exploitdb

URL: https://www.exploit-db.com/exploits/40619

Exploit ID: 40938

Source: exploitdb

URL: https://www.exploit-db.com/exploits/40938

Exploit ID: 42938

Source: exploitdb

URL: https://www.exploit-db.com/exploits/42938

Vulnerable Software (15)

Type: Configuration

Product: bash

Operating System: ubuntu trusty 14.04

Trait: 
{  "fixed": "4.3-7ubuntu1.4"}

Source: ubuntu

Type: Configuration

Product: bash

Operating System: debian

Trait: 
{  "fixed": "4.3-9.2"}

Source: debian

Type: Configuration

Product: bash

Operating System: rhel 4

Trait: 
{  "fixed": "3.0-27.el4.4"}

Source: redhat

Type: Configuration

Product: bash

Operating System: rhel 5

Trait: 
{  "fixed": "3.2-33.el5_11.4"}

Source: redhat

Type: Configuration

Product: bash

Operating System: rhel 5.6

Trait: 
{  "fixed": "3.2-24.el5_6.2"}

Source: redhat

Type: Configuration

Product: bash

Operating System: rhel 5.9

Trait: 
{  "fixed": "3.2-32.el5_9.3"}

Source: redhat

Type: Configuration

Product: bash

Operating System: rhel 6

Trait: 
{  "fixed": "4.1.2-15.el6_5.2"}

Source: redhat

Type: Configuration

Product: bash

Operating System: rhel 6.2

Trait: 
{  "fixed": "4.1.2-9.el6_2.2"}

Source: redhat

Type: Configuration

Product: bash

Operating System: rhel 6.4

Trait: 
{  "fixed": "4.1.2-15.el6_4.2"}

Source: redhat

Type: Configuration

Product: bash

Operating System: rhel 7

Trait: 
{  "fixed": "4.2.45-5.el7_0.4"}

Source: redhat

Type: Configuration

Product: bash

Operating System: rhel

Trait: 
{  "fixed": "3.2-33.el5_11.1.sjis.2"}

Source: redhat

Type: Configuration

Product: bash

Operating System: rhel

Trait: 
{  "fixed": "4.1.2-15.el6_5.1.sjis.2"}

Source: redhat

Type: Configuration

Product: bash

Operating System: rhel

Trait: 
{  "fixed": "3.2-32.el5_9.3.sjis.1"}

Source: redhat

Type: Configuration

Product: rhev-hypervisor6

Operating System: rhel

Trait: 
{  "fixed": "6.5-20140930.1.el6ev"}

Source: redhat

Type: Configuration

Vendor: *

Product: bash

Operating System: * * *

Trait: 
{  "cpe_match": [    {      "cpe23uri": "cpe:2.3:a:gnu:bash:1.14.0:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:gnu:bash:1.14.1:*:*:*:*:*:*:*",      "vulnerab...

Source: nvd

End of list