Lucene search

[email protected]CVE-2003-1288

HistoryDec 31, 2003 - 5:00 a.m.

CVE-2003-1288

2003-12-3105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve

linux-vserver 1.22

linux kernel 2.4.23

smp

race conditions

denial of service

kernel oops

nvd

7 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.0004 Low

EPSS

Percentile

5.3%

JSON

Multiple race conditions in Linux-VServer 1.22 with Linux kernel 2.4.23 and SMP allow local users to cause a denial of service (kernel oops) via unknown attack vectors related to the (1) s_info and (2) ip_info data structures and the (a) forget_original_parent, (b) goodness, © schedule, (d) update_process_times, and (e) vc_new_s_context functions.

CPENameOperatorVersion
vserver:linux-vservervserver linux-vservereq1.22

CPE	Name	Operator	Version
vserver:linux-vserver	vserver linux-vserver	eq	1.22

References

linux-vserver.org/ChangeLog

list.linux-vserver.org/archive/vserver/msg05630.html

list.linux-vserver.org/archive/vserver/msg05631.html

list.linux-vserver.org/archive/vserver/msg05658.html

www.osvdb.org/7587

7 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.0004 Low

EPSS

Percentile

5.3%

JSON