CVE-2005-0109 — Vulnetix

Try Vulnetix Request Demo

CVE-2005-0109 PUBLISHED CVSS 4.699999809265137 MEDIUM

Hyper-Threading technology, as used in FreeBSD and other operating systems that are run on Intel Pentium and other processors, allows local users to use a malicious thread to create covert channels, monitor the execution of other threads, and obtain sensitive information such as cryptographic keys, via a timing attack on memory cache misses.

EPSS 0.14% · 34.3th percentile

Risk Scores

CVSS v2.0

4.699999809265137

EPSS Score

0.14%

34.3th percentile

Affected Products

Vendor	Product	Versions
redhat	enterprise_linux_desktop	3.0, 4.0
sun	solaris	9.0, 9.0, 8.0
sco	unixware	7.1.3_up, 7.1.3, 7.1.4
sco	openserver	5.0.7
n/a	n/a	n/a
redhat	enterprise_linux	2.1, 4.0, 4.0
redhat	fedora_core	core_3.0
freebsd	freebsd	3.5.1, 3.5.1, 4.0
ubuntu	ubuntu_linux	4.1, 4.1, 5.04

Timeline

Mar 5, 2005 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score

References

VU#911878 third-party-advisory
18165 third-party-advisory
http://www-1.ibm.com/support/docview.wss?uid=isg1SSRVHMCHMC_C081516_754 url
[freebsd-hackers] 20050304 Re: FW:FreeBSD hiding security stuff mailing-list
SCOSA-2005.24 vendor-advisory
oval:org.mitre.oval:def:9747 vdb
ADV-2005-3002 vdb
15348 third-party-advisory
12724 vdb
[freebsd-security] 20050304 [Fwd: Re: FW:FreeBSD hiding security stuff] mailing-list
RHSA-2005:476 vendor-advisory
1013967 vdb
ADV-2005-0540 vdb
http://www.daemonology.net/papers/htt.pdf url
RHSA-2005:800 vendor-advisory
http://www.daemonology.net/hyperthreading-considered-harmful/ url
101739 vendor-advisory
[openbsd-misc] 20050304 Re: FreeBSD hiding security stuff mailing-list
https://nvd.nist.gov/vuln/detail/CVE-2005-0109 advisory
http://www.daemonology.net/hyperthreading-considered-harmful url

Open in Interactive Console →