Lucene search

[email protected]CVE-2004-1235

HistoryApr 14, 2005 - 4:00 a.m.

CVE-2004-1235

2005-04-1404:00:00

[email protected]

web.nvd.nist.gov

cve

race condition

linux kernel

arbitrary code

vma descriptor

nvd

6.2 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

0.4%

JSON

Race condition in the (1) load_elf_library and (2) binfmt_aout function calls for uselib in Linux kernel 2.4 through 2.429-rc2 and 2.6 through 2.6.10 allows local users to execute arbitrary code by manipulating the VMA descriptor.

Affected configurations

NVD

Node

avayamn100

avayanetwork_routing

avayaconverged_communications_serverMatch2.0

avayas8710Matchr2.0.0

avayas8710Matchr2.0.1

avayamodular_messaging_message_storage_serverMatch1.1

avayamodular_messaging_message_storage_serverMatch2.0

linuxlinux_kernelMatch2.4.0

linuxlinux_kernelMatch2.4.0test1

linuxlinux_kernelMatch2.4.0test10

linuxlinux_kernelMatch2.4.0test11

linuxlinux_kernelMatch2.4.0test12

linuxlinux_kernelMatch2.4.0test2

linuxlinux_kernelMatch2.4.0test3

linuxlinux_kernelMatch2.4.0test4

linuxlinux_kernelMatch2.4.0test5

linuxlinux_kernelMatch2.4.0test6

linuxlinux_kernelMatch2.4.0test7

linuxlinux_kernelMatch2.4.0test8

linuxlinux_kernelMatch2.4.0test9

linuxlinux_kernelMatch2.4.1

linuxlinux_kernelMatch2.4.2

linuxlinux_kernelMatch2.4.3

linuxlinux_kernelMatch2.4.4

linuxlinux_kernelMatch2.4.5

linuxlinux_kernelMatch2.4.6

linuxlinux_kernelMatch2.4.7

linuxlinux_kernelMatch2.4.8

linuxlinux_kernelMatch2.4.9

linuxlinux_kernelMatch2.4.10

linuxlinux_kernelMatch2.4.11

linuxlinux_kernelMatch2.4.12

linuxlinux_kernelMatch2.4.13

linuxlinux_kernelMatch2.4.14

linuxlinux_kernelMatch2.4.15

linuxlinux_kernelMatch2.4.16

linuxlinux_kernelMatch2.4.17

linuxlinux_kernelMatch2.4.18

linuxlinux_kernelMatch2.4.18x86

linuxlinux_kernelMatch2.4.18pre1

linuxlinux_kernelMatch2.4.18pre2

linuxlinux_kernelMatch2.4.18pre3

linuxlinux_kernelMatch2.4.18pre4

linuxlinux_kernelMatch2.4.18pre5

linuxlinux_kernelMatch2.4.18pre6

linuxlinux_kernelMatch2.4.18pre7

linuxlinux_kernelMatch2.4.18pre8

linuxlinux_kernelMatch2.4.19

linuxlinux_kernelMatch2.4.19pre1

linuxlinux_kernelMatch2.4.19pre2

linuxlinux_kernelMatch2.4.19pre3

linuxlinux_kernelMatch2.4.19pre4

linuxlinux_kernelMatch2.4.19pre5

linuxlinux_kernelMatch2.4.19pre6

linuxlinux_kernelMatch2.4.20

linuxlinux_kernelMatch2.4.21

linuxlinux_kernelMatch2.4.21pre1

linuxlinux_kernelMatch2.4.21pre4

linuxlinux_kernelMatch2.4.21pre7

linuxlinux_kernelMatch2.4.22

linuxlinux_kernelMatch2.4.23

linuxlinux_kernelMatch2.4.23pre9

linuxlinux_kernelMatch2.4.23_ow2

linuxlinux_kernelMatch2.4.24

linuxlinux_kernelMatch2.4.24_ow1

linuxlinux_kernelMatch2.4.25

linuxlinux_kernelMatch2.4.26

linuxlinux_kernelMatch2.4.27

linuxlinux_kernelMatch2.4.27pre1

linuxlinux_kernelMatch2.4.27pre2

linuxlinux_kernelMatch2.4.27pre3

linuxlinux_kernelMatch2.4.27pre4

linuxlinux_kernelMatch2.4.27pre5

linuxlinux_kernelMatch2.4.28

linuxlinux_kernelMatch2.4.29rc2

linuxlinux_kernelMatch2.6.0

linuxlinux_kernelMatch2.6.0test1

linuxlinux_kernelMatch2.6.0test10

linuxlinux_kernelMatch2.6.0test11

linuxlinux_kernelMatch2.6.0test2

linuxlinux_kernelMatch2.6.0test3

linuxlinux_kernelMatch2.6.0test4

linuxlinux_kernelMatch2.6.0test5

linuxlinux_kernelMatch2.6.0test6

linuxlinux_kernelMatch2.6.0test7

linuxlinux_kernelMatch2.6.0test8

linuxlinux_kernelMatch2.6.0test9

linuxlinux_kernelMatch2.6.1

linuxlinux_kernelMatch2.6.1rc1

linuxlinux_kernelMatch2.6.1rc2

linuxlinux_kernelMatch2.6.2

linuxlinux_kernelMatch2.6.3

linuxlinux_kernelMatch2.6.4

linuxlinux_kernelMatch2.6.5

linuxlinux_kernelMatch2.6.6

linuxlinux_kernelMatch2.6.6rc1

linuxlinux_kernelMatch2.6.7

linuxlinux_kernelMatch2.6.7rc1

linuxlinux_kernelMatch2.6.8

linuxlinux_kernelMatch2.6.8rc1

linuxlinux_kernelMatch2.6.8rc2

linuxlinux_kernelMatch2.6.8rc3

linuxlinux_kernelMatch2.6.92.6.20

linuxlinux_kernelMatch2.6.10

linuxlinux_kernelMatch2.6.10rc2

linuxlinux_kernelMatch2.6_test9_cvs

mandrakesoftmandrake_linuxMatch9.2

mandrakesoftmandrake_linuxMatch9.2amd64

mandrakesoftmandrake_linuxMatch10.0

mandrakesoftmandrake_linuxMatch10.0amd64

mandrakesoftmandrake_linuxMatch10.1

mandrakesoftmandrake_linuxMatch10.1x86_64

mandrakesoftmandrake_linux_corporate_serverMatch2.1

mandrakesoftmandrake_linux_corporate_serverMatch2.1x86_64

mandrakesoftmandrake_linux_corporate_serverMatch3.0

redhatenterprise_linuxMatch3.0advanced_servers

redhatenterprise_linuxMatch3.0enterprise_server

redhatenterprise_linuxMatch3.0workstation

redhatenterprise_linuxMatch4.0advanced_server

redhatenterprise_linuxMatch4.0enterprise_server

redhatenterprise_linuxMatch4.0workstation

redhatenterprise_linux_desktopMatch3.0

redhatenterprise_linux_desktopMatch4.0

redhatfedora_coreMatchcore_1.0

redhatfedora_coreMatchcore_2.0

redhatfedora_coreMatchcore_3.0

redhatlinuxMatch7.3i386

redhatlinuxMatch9.0i386

susesuse_linuxMatch1.0desktop

susesuse_linuxMatch8enterprise_server

susesuse_linuxMatch8.1

susesuse_linuxMatch8.2

susesuse_linuxMatch9.0

susesuse_linuxMatch9.0enterprise_server

susesuse_linuxMatch9.1

susesuse_linuxMatch9.2

ubuntuubuntu_linuxMatch4.1ia64

ubuntuubuntu_linuxMatch4.1ppc

Node

avayaintuity_audixlx

mandrakesoftmandrake_multi_network_firewallMatch8.2

avayas8300Matchr2.0.0

avayas8300Matchr2.0.1

avayas8500Matchr2.0.0

avayas8500Matchr2.0.1

avayas8700Matchr2.0.0

avayas8700Matchr2.0.1

conectivalinuxMatch10.0

CPENameOperatorVersion
avaya:mn100avaya mn100eq*
avaya:network_routingavaya network routingeq*
avaya:converged_communications_serveravaya converged communications servereq2.0
avaya:s8710avaya s8710eqr2.0.0
avaya:s8710avaya s8710eqr2.0.1
avaya:modular_messaging_message_storage_serveravaya modular messaging message storage servereq1.1
avaya:modular_messaging_message_storage_serveravaya modular messaging message storage servereq2.0
linux:linux_kernellinux linux kerneleq2.4.0
linux:linux_kernellinux linux kerneleq2.4.1
linux:linux_kernellinux linux kerneleq2.4.2

CPE	Name	Operator	Version
avaya:mn100	avaya mn100	eq	*
avaya:network_routing	avaya network routing	eq	*
avaya:converged_communications_server	avaya converged communications server	eq	2.0
avaya:s8710	avaya s8710	eq	r2.0.0
avaya:s8710	avaya s8710	eq	r2.0.1
avaya:modular_messaging_message_storage_server	avaya modular messaging message storage server	eq	1.1
avaya:modular_messaging_message_storage_server	avaya modular messaging message storage server	eq	2.0
linux:linux_kernel	linux linux kernel	eq	2.4.0
linux:linux_kernel	linux linux kernel	eq	2.4.1
linux:linux_kernel	linux linux kernel	eq	2.4.2