Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0736

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2005-0736
Last Modified 21 Aug 2010 12:26:54
Published 09 Mar 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-0736

Summary

Integer overflow in sys_epoll_wait in eventpoll.c for Linux kernel 2.6 to 2.6.11 allows local users to overwrite kernel memory via a large number of events.

Vulnerable Systems

Operating System

  • Conectiva Linux 10.0

  • Linux Kernel 2.6.0

  • Linux Kernel 2.6.1

  • Linux Kernel 2.6.10

  • Linux Kernel 2.6.11

  • Linux Kernel 2.6.2

  • Linux Kernel 2.6.3

  • Linux Kernel 2.6.4

  • Linux Kernel 2.6.5

  • Linux Kernel 2.6.6

  • Linux Kernel 2.6.7

  • Linux Kernel 2.6.8

  • Linux Kernel 2.6.9

  • Redhat Enterprise Linux 4.0

  • Redhat Enterprise Linux Desktop 4.0

  • Redhat Fedora Core Core 2.0

  • Redhat Fedora Core Core 3.0


References

BID - 12763

FULLDISC - 20050309 overwriting low kernel memory

UBUNTU - USN-95-1

SUSE - SUSE-SA:2005:018

CONFIRM - http://linux.bkbits.net:8080/linux-2.6/cset@422dd06a1p5PsyFhoGAJseinjEq3ew?nav=index.html|ChangeSet@-1d

REDHAT - RHSA-2005:366

REDHAT - RHSA-2005:293


Last Updated: 27 May 2016 10:39:54