Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0666

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2005-0666
Last Modified 05 Sep 2008 04:46:57
Published 02 May 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-0666

Summary

Unknown vulnerability in PaX from the September 2003 release to 2.2 before 2005.03.05, related to SEGMEXEC or RANDEXEC and VMA mirroring, allows local users and possibly remote attackers to bypass intended access restrictions and execute arbitrary code.

Vulnerable Systems

Application

  • The Pax Team Pax Linux 2.2

  • The Pax Team Pax Linux 2.4.20

  • The Pax Team Pax Linux 2.4.21

  • The Pax Team Pax Linux 2.4.22

  • The Pax Team Pax Linux 2.4.23

  • The Pax Team Pax Linux 2.4.24

  • The Pax Team Pax Linux 2.4.25

  • The Pax Team Pax Linux 2.4.26

  • The Pax Team Pax Linux 2.4.27

  • The Pax Team Pax Linux 2.4.28

  • The Pax Team Pax Linux 2.6.5


References

BID - 12729

BUGTRAQ - 20050305 PaX privilege elevation security bug

SECUNIA - 14489


Last Updated: 27 May 2016 10:39:53