Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0685

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2004-0685
Last Modified 10 Jul 2013 02:02:54
Published 23 Dec 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2004-0685

Summary

Certain USB drivers in the Linux 2.4 kernel use the copy_to_user function on uninitialized structures, which could allow local users to obtain sensitive information by reading memory that was not cleared from previous usage.

Vulnerable Systems

Operating System

  • Linux Kernel 2.2.0

  • Linux Kernel 2.2.1

  • Linux Kernel 2.2.10

  • Linux Kernel 2.2.11

  • Linux Kernel 2.2.12

  • Linux Kernel 2.2.13

  • Linux Kernel 2.2.14

  • Linux Kernel 2.2.15

  • Linux Kernel 2.2.15 Pre20

  • Linux Kernel 2.2.16

  • Linux Kernel 2.2.17

  • Linux Kernel 2.2.18

  • Linux Kernel 2.2.19

  • Linux Kernel 2.2.2

  • Linux Kernel 2.2.20

  • Linux Kernel 2.2.21

  • Linux Kernel 2.2.22

  • Linux Kernel 2.2.23

  • Linux Kernel 2.2.24

  • Linux Kernel 2.2.25

  • Linux Kernel 2.2.3

  • Linux Kernel 2.2.4

  • Linux Kernel 2.2.5

  • Linux Kernel 2.2.6

  • Linux Kernel 2.2.7

  • Linux Kernel 2.2.8

  • Linux Kernel 2.2.9

  • Linux Kernel 2.3.0

  • Linux Kernel 2.3.99

  • Linux Kernel 2.4.0

  • Linux Kernel 2.4.1

  • Linux Kernel 2.4.10

  • Linux Kernel 2.4.11

  • Linux Kernel 2.4.12

  • Linux Kernel 2.4.13

  • Linux Kernel 2.4.14

  • Linux Kernel 2.4.15

  • Linux Kernel 2.4.16

  • Linux Kernel 2.4.17

  • Linux Kernel 2.4.18

  • Linux Kernel 2.4.19

  • Linux Kernel 2.4.2

  • Linux Kernel 2.4.20

  • Linux Kernel 2.4.21

  • Linux Kernel 2.4.22

  • Linux Kernel 2.4.23

  • Linux Kernel 2.4.23 Ow2

  • Linux Kernel 2.4.24

  • Linux Kernel 2.4.24 Ow1

  • Linux Kernel 2.4.25

  • Linux Kernel 2.4.26

  • Linux Kernel 2.4.27

  • Linux Kernel 2.4.3

  • Linux Kernel 2.4.4

  • Linux Kernel 2.4.5

  • Linux Kernel 2.4.6

  • Linux Kernel 2.4.7

  • Linux Kernel 2.4.8

  • Linux Kernel 2.4.9

  • Linux Kernel 2.5.0

  • Linux Kernel 2.5.1

  • Linux Kernel 2.5.10

  • Linux Kernel 2.5.11

  • Linux Kernel 2.5.12

  • Linux Kernel 2.5.13

  • Linux Kernel 2.5.14

  • Linux Kernel 2.5.15

  • Linux Kernel 2.5.16

  • Linux Kernel 2.5.17

  • Linux Kernel 2.5.18

  • Linux Kernel 2.5.19

  • Linux Kernel 2.5.2

  • Linux Kernel 2.5.20

  • Linux Kernel 2.5.21

  • Linux Kernel 2.5.22

  • Linux Kernel 2.5.23

  • Linux Kernel 2.5.24

  • Linux Kernel 2.5.25

  • Linux Kernel 2.5.26

  • Linux Kernel 2.5.27

  • Linux Kernel 2.5.28

  • Linux Kernel 2.5.29

  • Linux Kernel 2.5.3

  • Linux Kernel 2.5.30

  • Linux Kernel 2.5.31

  • Linux Kernel 2.5.32

  • Linux Kernel 2.5.33

  • Linux Kernel 2.5.34

  • Linux Kernel 2.5.35

  • Linux Kernel 2.5.36

  • Linux Kernel 2.5.37

  • Linux Kernel 2.5.38

  • Linux Kernel 2.5.39

  • Linux Kernel 2.5.4

  • Linux Kernel 2.5.40

  • Linux Kernel 2.5.41

  • Linux Kernel 2.5.42

  • Linux Kernel 2.5.43

  • Linux Kernel 2.5.44

  • Linux Kernel 2.5.45

  • Linux Kernel 2.5.46

  • Linux Kernel 2.5.47

  • Linux Kernel 2.5.48

  • Linux Kernel 2.5.49

  • Linux Kernel 2.5.5

  • Linux Kernel 2.5.50

  • Linux Kernel 2.5.51

  • Linux Kernel 2.5.52

  • Linux Kernel 2.5.53

  • Linux Kernel 2.5.54

  • Linux Kernel 2.5.55

  • Linux Kernel 2.5.56

  • Linux Kernel 2.5.57

  • Linux Kernel 2.5.58

  • Linux Kernel 2.5.59

  • Linux Kernel 2.5.6

  • Linux Kernel 2.5.60

  • Linux Kernel 2.5.61

  • Linux Kernel 2.5.62

  • Linux Kernel 2.5.63

  • Linux Kernel 2.5.64

  • Linux Kernel 2.5.65

  • Linux Kernel 2.5.66

  • Linux Kernel 2.5.67

  • Linux Kernel 2.5.68

  • Linux Kernel 2.5.69

  • Linux Kernel 2.5.7

  • Linux Kernel 2.5.8

  • Linux Kernel 2.5.9

  • Linux Kernel 2.6 Test9 Cvs

  • Linux Kernel 2.6.0

  • Linux Kernel 2.6.1

  • Linux Kernel 2.6.2

  • Linux Kernel 2.6.3

  • Linux Kernel 2.6.4

  • Linux Kernel 2.6.5

  • Linux Kernel 2.6.6

  • Linux Kernel 2.6.7

  • Linux Kernel 2.6.8

  • Redhat Enterprise Linux 3.0

  • Redhat Enterprise Linux Desktop 3.0

  • Trustix Secure Linux 2.0

  • Trustix Secure Linux 2.1


References

CERT-VN - VU#981134

XF - linux-usb-gain-privileges(16931)

BID - 10892

GENTOO - GLSA-200408-24

FEDORA - FLSA:2336

TRUSTIX - 2004-0041

MISC - http://www.securityspace.com/smysecure/catid.html?id=14580

REDHAT - RHSA-2004:505

REDHAT - RHSA-2004:504

DEBIAN - DSA-1082

DEBIAN - DSA-1070

DEBIAN - DSA-1069

DEBIAN - DSA-1067

SECUNIA - 20338

SECUNIA - 20202

SECUNIA - 20163

SECUNIA - 20162

CONFIRM - http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=127921


Last Updated: 27 May 2016 10:38:43