Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-1288

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2003-1288
Last Modified 05 Sep 2008 04:36:32
Published 31 Dec 2003 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-1288

Summary

Multiple race conditions in Linux-VServer 1.22 with Linux kernel 2.4.23 and SMP allow local users to cause a denial of service (kernel oops) via unknown attack vectors related to the (1) s_info and (2) ip_info data structures and the (a) forget_original_parent, (b) goodness, (c) schedule, (d) update_process_times, and (e) vc_new_s_context functions.

Vulnerable Systems

Application

  • Linux-vserver 1.22


References

OSVDB - 7587

MLIST - [Vserver] 20031220 Re: SMP oops 2.4.23 v1.22

MLIST - [Vserver] 20031219 Re: SMP oops 2.4.23 v1.22

MLIST - [Vserver] 20031218 SMP oops 2.4.23 v1.22

CONFIRM - http://linux-vserver.org/ChangeLog


Last Updated: 27 May 2016 10:38:18