Lucene search

[email protected]CVE-2005-4789

HistoryDec 31, 2005 - 5:00 a.m.

CVE-2005-4789

2005-12-3105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

resmgr

suse linux

usb

access restrictions

security vulnerability

6.7 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

5.2%

JSON

resmgr in SUSE Linux 9.2 and 9.3, and possibly other distributions, does not properly enforce class-specific exclude rules in some situations, which allows local users to bypass intended access restrictions for USB devices that set their class ID at the interface level.

CPENameOperatorVersion
suse:suse_linuxsuse suse linuxeq9.3
suse:suse_linuxsuse suse linuxeq9.2

CPE	Name	Operator	Version
suse:suse_linux	suse suse linux	eq	9.3
suse:suse_linux	suse suse linux	eq	9.2

References

www.novell.com/linux/security/advisories/2005_22_sr.html

www.securityfocus.com/bid/15037

6.7 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

5.2%

JSON

Related for CVE-2005-4789

ubuntucve1