[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

249966

 
 

909

 
 

195636

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2005-0001Date: (C)2005-05-02   (M)2023-12-22


Race condition in the page fault handler (fault.c) for Linux kernel 2.2.x to 2.2.7, 2.4 to 2.4.29, and 2.6 to 2.6.10, when running on multiprocessor machines, allows local users to execute arbitrary code via concurrent threads that share the same virtual memory space and simultaneously request stack expansion.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 6.9
Exploit Score: 3.4
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
SECTRACK-1012862
BID-12244
SECUNIA-13822
2005-0001
http://marc.info/?l=bugtraq&m=110554694522719&w=2
http://marc.info/?l=bugtraq&m=110581146702951&w=2
SECUNIA-20163
SECUNIA-20202
SECUNIA-20338
CLA-2005:930
DSA-1067
DSA-1069
DSA-1070
DSA-1082
FLSA:2336
MDKSA-2005:022
RHSA-2005:016
RHSA-2005:017
RHSA-2005:043
RHSA-2005:092
http://isec.pl/vulnerabilities/isec-0022-pagefault.txt
linux-fault-handler-gain-privileges(18849)
oval:org.mitre.oval:def:10322

CPE    46
cpe:/o:linux:linux_kernel:2.6.10
cpe:/o:linux:linux_kernel:2.4.26
cpe:/o:trustix:secure_linux:2
cpe:/o:linux:linux_kernel:2.4.27
...

© SecPod Technologies