Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-1285


Vulnerability Score 2.1 2.1
CVE Id CVE-1999-1285
Last Modified 05 Sep 2008 04:19:09
Published 27 Dec 1998 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE



Linux 2.1.132 and earlier allows local users to cause a denial of service (resource exhaustion) by reading a large buffer from a random device (e.g. /dev/urandom), which cannot be interrupted until the read has completed.

Vulnerable Systems

Operating System

  • Linux Kernel 2.1.132


BUGTRAQ - 19981227 [patch] fix for urandom read(2) not interruptible

XF - linux-random-read-dos(1472)

Last Updated: 27 May 2016 10:35:22