7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
12.3%
Added: 06/27/2007
CVE: CVE-2003-0127
BID: 7112
OSVDB: 4565
**ptrace**
is a Linux system call which enables a parent process to observe and control another process.
Due to a failure by the kernel to restrict trace permissions, a local attacker could gain root privileges by attaching to specific root spawned processes.
Upgrade to Linux kernel 2.2.25 or 2.4.21 or higher, or apply a fix from your Linux vendor.
<http://www.kb.cert.org/vuls/id/628849>
There may be a delay before the exploit succeeds.
Linux