CVE-2003-0019

Sažetak

uml_net in the kernel-utils package for Red Hat Linux 8.0 has incorrect setuid root privileges, which allows local users to modify network interfaces, e.g. by modifying ARP entries or placing interfaces into promiscuous mode.

Reference

http://www.ciac.org/ciac/bulletins/n-044.shtml
http://www.iss.net/security_center/static/11276.php
http://www.kb.cert.org/vuls/id/134025
http://www.redhat.com/support/errata/RHSA-2003-056.html
http://www.securityfocus.com/bid/6801

CVSS

Base:	7.2
Impact:	10.0
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

11-09-2008 - 00:05

Objavljeno

19-02-2003 - 05:00