Privilege Escalation Vulnerability in DCMTK by Offis
CVE-2013-6825

Currently unrated

Key Information:

Vendor

Offis

Status
Dcmtk
Vendor
CVE Published:
10 June 2014

What is CVE-2013-6825?

The privilege escalation vulnerability in DCMTK versions up to 3.6.1 arises from the failure to check the return value of the setuid system call in various components, including movescu.cc and storescp.cc. This oversight allows local users to create an excessive number of processes, ultimately leading to unauthorized privilege elevation and potential system compromises.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.securityfocus.com/archive/1/532261/100/0/threaded
mailing-listx_refsource_BUGTRAQ
http://packetstormsecurity.com/files/126883/DCMTK-Privile...
x_refsource_MISC
http://secunia.com/advisories/58916
third-party-advisoryx_refsource_SECUNIA

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.