Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0403

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2005-0403
Last Modified 21 Aug 2010 12:25:59
Published 01 Sep 2005 06:03:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-0403

Summary

init_dev in tty_io.c in the Red Hat backport of NPTL to Red Hat Enterprise Linux 3 does not properly clear controlling tty's in multi-threaded applications, which allows local users to cause a denial of service (crash) and possibly gain tty access via unknown attack vectors that trigger an access of a pointer to a freed structure.

Vulnerable Systems

Operating System

  • Redhat Enterprise Linux 3.0

  • Redhat Enterprise Linux Desktop 3.0


References

REDHAT - RHSA-2005:293

MISC - https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=144059


Last Updated: 27 May 2016 10:39:47