CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
10.1%
Evan Teran discovered that the Linux kernel ptrace routines did not
correctly handle certain requests robustly. Local attackers could exploit
this to crash the system, causing a denial of service. (CVE-2007-3731)
It was discovered that hugetlb kernels on PowerPC systems did not prevent
the stack from colliding with reserved kernel memory. Local attackers
could exploit this and crash the system, causing a denial of service.
(CVE-2007-3739)
It was discovered that certain CIFS filesystem actions did not honor
the umask of a process. Local attackers could exploit this to gain
additional privileges. (CVE-2007-3740)
Wojciech Purczynski discovered that the Linux kernel ia32 syscall
emulation in x86_64 kernels did not correctly clear the high bits of
registers. Local attackers could exploit this to gain root privileges.
(CVE-2007-4573)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 7.04 | noarch | linux-image-2.6.20-16-386 | < 2.6.20-16.32 | UNKNOWN |
Ubuntu | 7.04 | noarch | acpi-modules-2.6.20-16-generic-di | < 2.6.20-16.32 | UNKNOWN |
Ubuntu | 7.04 | noarch | block-modules-2.6.20-16-generic-di | < 2.6.20-16.32 | UNKNOWN |
Ubuntu | 7.04 | noarch | fat-modules-2.6.20-16-generic-di | < 2.6.20-16.32 | UNKNOWN |
Ubuntu | 7.04 | noarch | fb-modules-2.6.20-16-generic-di | < 2.6.20-16.32 | UNKNOWN |
Ubuntu | 7.04 | noarch | firewire-core-modules-2.6.20-16-generic-di | < 2.6.20-16.32 | UNKNOWN |
Ubuntu | 7.04 | noarch | floppy-modules-2.6.20-16-generic-di | < 2.6.20-16.32 | UNKNOWN |
Ubuntu | 7.04 | noarch | fs-core-modules-2.6.20-16-generic-di | < 2.6.20-16.32 | UNKNOWN |
Ubuntu | 7.04 | noarch | fs-secondary-modules-2.6.20-16-generic-di | < 2.6.20-16.32 | UNKNOWN |
Ubuntu | 7.04 | noarch | ide-modules-2.6.20-16-generic-di | < 2.6.20-16.32 | UNKNOWN |