CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
EPSS
Percentile
0.4%
The VT implementation (vt_ioctl.c) in Linux kernel 2.6.12, and possibly
other versions including 2.6.14.4, allows local users to use the KDSKBSENT
ioctl on terminals of other users and gain privileges, as demonstrated by
modifying key bindings using loadkeys.