[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

250770

 
 

909

 
 

196157

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2003-1040Date: (C)2004-04-15   (M)2023-12-22


kmod in the Linux kernel does not set its uid, suid, gid, or sgid to 0, which allows local users to cause a denial of service (crash) by sending certain signals to kmod.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 2.1
Exploit Score: 3.9
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL
  
Reference:
20040204-01-U
CLSA-2004:820
RHSA-2004:065
RHSA-2004:069
RHSA-2004:106
RHSA-2004:188
SuSE-SA:2003:049
http://linux.bkbits.net:8080/linux-2.4/diffs/kernel/kmod.c%401.6?nav=index.html%7Csrc/%7Csrc/kernel%7Chist/kernel/kmod.c
linux-kmod-signals-dos(15577)
oval:org.mitre.oval:def:9423

CPE    1
cpe:/o:linux:linux_kernel:2.4.0

© SecPod Technologies