2 matches found
CVE-2004-1295
The slipdown function in slip.c for the umlnet program in uml-utilities 20030903, when umlnet is installed setuid root, does not verify whether the calling user has sufficient permission to disable an interface, which allows local users to cause a denial of service network service disabled...
CVE-2003-0019
umlnet in the kernel-utils package for Red Hat Linux 8.0 has incorrect setuid root privileges, which allows local users to modify network interfaces, e.g. by modifying ARP entries or placing interfaces into promiscuous mode...