6.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
10.1%
Linux kernel before 2.6.25.2 does not apply a certain protection mechanism
for fcntl functionality, which allows local users to (1) execute code in
parallel or (2) exploit a race condition to obtain βre-ordered access to
the descriptor table.β
Author | Note |
---|---|
kees | Message-Id: <[email protected]> |