VDB
CVE-2005-0109
CVE-2005-0109
PUBLISHED
CVSS 4.699999809265137 MEDIUM
Hyper-Threading technology, as used in FreeBSD and other operating systems that are run on Intel Pentium and other processors, allows local users to use a malicious thread to create covert channels, monitor the execution of other threads, and obtain sensitive information such as cryptographic keys, via a timing attack on memory cache misses.
EPSS 0.14% · 34.3th percentile
Risk Scores
CVSS 2.0
4.699999809265137
EPSS Score
0.14%
34.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| redhat | enterprise_linux_desktop | 4.0, 3.0 |
| sun | solaris | 7.0, 8.0, 10.0 |
| sco | unixware | *, 7.1.4, 7.1.3 |
| sco | openserver | 5.0.7 |
| n/a | n/a | n/a |
| redhat | enterprise_linux | 3.0, 4.0, 4.0 |
| redhat | fedora_core | core_3.0 |
| freebsd | freebsd | 4.1.1, 4.1.1, 4.1.1 |
| ubuntu | ubuntu_linux | 5.04, 5.04, 5.04 |
Exploit Intelligence
- VU#911878 (circl)
- 18165 (circl)
- http://www-1.ibm.com/support/docview.wss?uid=isg1SSRVHMCHMC_C081516_754 (circl)
- [freebsd-hackers] 20050304 Re: FW:FreeBSD hiding security stuff (circl)
- SCOSA-2005.24 (circl)
- oval:org.mitre.oval:def:9747 (circl)
- ADV-2005-3002 (circl)
- 15348 (circl)
- 12724 (circl)
- [freebsd-security] 20050304 [Fwd: Re: FW:FreeBSD hiding security stuff] (circl)
…and 8 more exploits
Timeline
- Mar 5, 2005 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- VU#911878 third-party-advisory
- 18165 third-party-advisory
- http://www-1.ibm.com/support/docview.wss?uid=isg1SSRVHMCHMC_C081516_754 url
- [freebsd-hackers] 20050304 Re: FW:FreeBSD hiding security stuff mailing-list
- SCOSA-2005.24 vendor-advisory
- oval:org.mitre.oval:def:9747 vdb
- ADV-2005-3002 vdb
- 15348 third-party-advisory
- 12724 vdb
- [freebsd-security] 20050304 [Fwd: Re: FW:FreeBSD hiding security stuff] mailing-list
- RHSA-2005:476 vendor-advisory
- 1013967 vdb
- ADV-2005-0540 vdb
- http://www.daemonology.net/papers/htt.pdf url
- RHSA-2005:800 vendor-advisory
- http://www.daemonology.net/hyperthreading-considered-harmful/ url
- 101739 vendor-advisory
- [openbsd-misc] 20050304 Re: FreeBSD hiding security stuff mailing-list
- https://nvd.nist.gov/vuln/detail/CVE-2005-0109 advisory
- http://www.daemonology.net/hyperthreading-considered-harmful url