Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1125

Overview

Vulnerability Score 5.1 5.1
CVE Id CVE-2005-1125
Last Modified 05 Sep 2008 04:48:17
Published 02 May 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2005-1125

Summary

Race condition in libsafe 2.0.16 and earlier, when running in multi-threaded applications, allows attackers to bypass libsafe protection and exploit other vulnerabilities before the _libsafe_die function call is completed.

Vulnerable Systems

Application

  • Avaya Libsafe 2.0.1

  • Avaya Libsafe 2.0.10

  • Avaya Libsafe 2.0.11

  • Avaya Libsafe 2.0.12

  • Avaya Libsafe 2.0.13

  • Avaya Libsafe 2.0.14

  • Avaya Libsafe 2.0.15

  • Avaya Libsafe 2.0.16

  • Avaya Libsafe 2.0.2

  • Avaya Libsafe 2.0.3

  • Avaya Libsafe 2.0.4

  • Avaya Libsafe 2.0.5

  • Avaya Libsafe 2.0.6

  • Avaya Libsafe 2.0.7

  • Avaya Libsafe 2.0.8

  • Avaya Libsafe 2.0.9


References

BID - 13190

BUGTRAQ - 20050415 [Overflow.pl] Libsafe - Safety Check Bypass Vulnerability

MISC - http://www.overflow.pl/adv/libsafebypass.txt


Last Updated: 27 May 2016 10:40:02