[email protected]CVE-2004-0228

HistoryAug 18, 2004 - 4:00 a.m.

CVE-2004-0228

2004-08-1804:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2004-0228

integer signedness error

cpufreq proc handler

linux kernel 2.6

nvd

local users

gain privileges

6.2 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

9.3%

JSON

Integer signedness error in the cpufreq proc handler (cpufreq_procctl) in Linux kernel 2.6 allows local users to gain privileges.

CPENameOperatorVersion
linux:linux_kernellinux linux kerneleq2.6.0

CPE	Name	Operator	Version
linux:linux_kernel	linux linux kernel	eq	2.6.0

References

distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000852

fedoranews.org/updates/FEDORA-2004-111.shtml

secunia.com/advisories/11429

secunia.com/advisories/11464

secunia.com/advisories/11486

secunia.com/advisories/11491

secunia.com/advisories/11683

security.gentoo.org/glsa/glsa-200407-02.xml

www.mandriva.com/security/advisories?name=MDKSA-2004:050

www.novell.com/linux/security/advisories/2004_10_kernel.html

exchange.xforce.ibmcloud.com/vulnerabilities/15951

6.2 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

9.3%

JSON

Related for CVE-2004-0228

nessus4 cvelist1 securityvulns2 ubuntucve1 suse1 gentoo1 openvas2