CVE-2014-0834

IBM General Parallel File System 3.4-3.4.0.27 and 3.5-3.5.0.16 - Denial of Service via Setuid Program Arguments

Title source: llm
STIX 2.1

Description

IBM General Parallel File System (GPFS) 3.4 through 3.4.0.27 and 3.5 through 3.5.0.16 allows attackers to cause a denial of service (daemon crash) via crafted arguments to a setuid program.

References (6)

Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/102765
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/65297
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/90647
Vendor Advisory vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1IV52863
Vendor Advisory vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1IV54381

Scores

EPSS 0.0119
EPSS Percentile 64.2%

Details

CWE
CWE-20
Status published
Products (42)
ibm/general_parallel_file_system 3.4.0.0
ibm/general_parallel_file_system 3.4.0.2
ibm/general_parallel_file_system 3.4.0.3
ibm/general_parallel_file_system 3.4.0.4
ibm/general_parallel_file_system 3.4.0.5
ibm/general_parallel_file_system 3.4.0.6
ibm/general_parallel_file_system 3.4.0.7
ibm/general_parallel_file_system 3.4.0.8
ibm/general_parallel_file_system 3.4.0.9
ibm/general_parallel_file_system 3.4.0.10
... and 32 more
Published Feb 04, 2014
Tracked Since Feb 18, 2026