Lucene search

[email protected]NVD:CVE-2005-2490

HistorySep 14, 2005 - 7:03 p.m.

CVE-2005-2490

2005-09-1419:03:00

[email protected]

web.nvd.nist.gov

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

6.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

28.7%

JSON

Stack-based buffer overflow in the sendmsg function call in the Linux kernel 2.6 before 2.6.13.1 allows local users to execute arbitrary code by calling sendmsg and modifying the message contents in another thread.

Affected configurations

NVD

Node

linuxlinux_kernelMatch2.6.0

linuxlinux_kernelMatch2.6.0test1

linuxlinux_kernelMatch2.6.0test10

linuxlinux_kernelMatch2.6.0test11

linuxlinux_kernelMatch2.6.0test2

linuxlinux_kernelMatch2.6.0test3

linuxlinux_kernelMatch2.6.0test4

linuxlinux_kernelMatch2.6.0test5

linuxlinux_kernelMatch2.6.0test6

linuxlinux_kernelMatch2.6.0test7

linuxlinux_kernelMatch2.6.0test8

linuxlinux_kernelMatch2.6.0test9

linuxlinux_kernelMatch2.6.1

linuxlinux_kernelMatch2.6.1rc1

linuxlinux_kernelMatch2.6.1rc2

linuxlinux_kernelMatch2.6.2

linuxlinux_kernelMatch2.6.3

linuxlinux_kernelMatch2.6.4

linuxlinux_kernelMatch2.6.5

linuxlinux_kernelMatch2.6.6

linuxlinux_kernelMatch2.6.6rc1

linuxlinux_kernelMatch2.6.7

linuxlinux_kernelMatch2.6.7rc1

linuxlinux_kernelMatch2.6.8

linuxlinux_kernelMatch2.6.8rc1

linuxlinux_kernelMatch2.6.8rc2

linuxlinux_kernelMatch2.6.8rc3

linuxlinux_kernelMatch2.6.92.6.20

linuxlinux_kernelMatch2.6.10

linuxlinux_kernelMatch2.6.10rc2

linuxlinux_kernelMatch2.6.11

linuxlinux_kernelMatch2.6.11rc2

linuxlinux_kernelMatch2.6.11rc3

linuxlinux_kernelMatch2.6.11rc4

linuxlinux_kernelMatch2.6.11.5

linuxlinux_kernelMatch2.6.11.6

linuxlinux_kernelMatch2.6.11.7

linuxlinux_kernelMatch2.6.11.8

linuxlinux_kernelMatch2.6.11.11

linuxlinux_kernelMatch2.6.12rc1

linuxlinux_kernelMatch2.6.12rc4

linuxlinux_kernelMatch2.6_test9_cvs

References

marc.info/?l=bugtraq&m=112690609622266&w=2

secunia.com/advisories/16747/

secunia.com/advisories/17002

secunia.com/advisories/17073

secunia.com/advisories/17826

secunia.com/advisories/17918

secunia.com/advisories/19374

www.debian.org/security/2006/dsa-1017

www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.13.1

www.mandriva.com/security/advisories?name=MDKSA-2005:219

www.mandriva.com/security/advisories?name=MDKSA-2005:220

www.mandriva.com/security/advisories?name=MDKSA-2005:235

www.redhat.com/support/errata/RHSA-2005-514.html

www.redhat.com/support/errata/RHSA-2005-663.html

www.securityfocus.com/archive/1/419522/100/0/threaded

www.securityfocus.com/archive/1/427980/100/0/threaded

www.securityfocus.com/archive/1/428028/100/0/threaded

www.securityfocus.com/archive/1/428058/100/0/threaded

www.securityfocus.com/bid/14785

www.ubuntu.com/usn/usn-178-1

www.vupen.com/english/advisories/2005/1878

bugzilla.redhat.com/bugzilla/show_bug.cgi?id=166248

exchange.xforce.ibmcloud.com/vulnerabilities/22217

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10481

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

6.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

28.7%

JSON

Related for NVD:CVE-2005-2490

ubuntucve1 cve1 cvelist1 nessus11 securityvulns4 ubuntu1 openvas4 redhat2 suse1 centos2 osv1 debian2