Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0462

Overview

Vulnerability Score 1.2 1.2
CVE Id CVE-2003-0462
Last Modified 10 Sep 2008 03:19:04
Published 27 Aug 2003 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity HIGH
Authentication NONE

CVE-2003-0462

Summary

A race condition in the way env_start and env_end pointers are initialized in the execve system call and used in fs/proc/base.c on Linux 2.4 allows local users to cause a denial of service (crash).

Vulnerable Systems

Operating System

  • Linux Kernel 2.4.0

  • Linux Kernel 2.4.1

  • Linux Kernel 2.4.10

  • Linux Kernel 2.4.11

  • Linux Kernel 2.4.12

  • Linux Kernel 2.4.13

  • Linux Kernel 2.4.14

  • Linux Kernel 2.4.15

  • Linux Kernel 2.4.16

  • Linux Kernel 2.4.17

  • Linux Kernel 2.4.18

  • Linux Kernel 2.4.19

  • Linux Kernel 2.4.2

  • Linux Kernel 2.4.20

  • Linux Kernel 2.4.21

  • Linux Kernel 2.4.3

  • Linux Kernel 2.4.4

  • Linux Kernel 2.4.5

  • Linux Kernel 2.4.6

  • Linux Kernel 2.4.7

  • Linux Kernel 2.4.8

  • Linux Kernel 2.4.9

  • Mandrakesoft Mandrake Linux 8.2

  • Mandrakesoft Mandrake Linux 9.0

  • Mandrakesoft Mandrake Linux Corporate Server 2.1

Application

  • Mandrakesoft Mandrake Multi Network Firewall 8.2


References

REDHAT - RHSA-2003:238

DEBIAN - DSA-423

REDHAT - RHSA-2003:198

DEBIAN - DSA-358

REDHAT - RHSA-2003:239


Last Updated: 27 May 2016 10:37:56