Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2709

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2005-2709
Last Modified 25 Jun 2012 12:00:00
Published 20 Nov 2005 05:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-2709

Summary

The sysctl functionality (sysctl.c) in Linux kernel before 2.6.14.1 allows local users to cause a denial of service (kernel oops) and possibly execute code by opening an interface file in /proc/sys/net/ipv4/conf/, waiting until the interface is unregistered, then obtaining and modifying function pointers in memory that was used for the ctl_table.

Vulnerable Systems

Operating System

  • Linux Kernel 2.2.27

  • Linux Kernel 2.4.1

  • Linux Kernel 2.4.10

  • Linux Kernel 2.4.11

  • Linux Kernel 2.4.12

  • Linux Kernel 2.4.13

  • Linux Kernel 2.4.14

  • Linux Kernel 2.4.15

  • Linux Kernel 2.4.16

  • Linux Kernel 2.4.17

  • Linux Kernel 2.4.18

  • Linux Kernel 2.4.19

  • Linux Kernel 2.4.2

  • Linux Kernel 2.4.20

  • Linux Kernel 2.4.21

  • Linux Kernel 2.4.22

  • Linux Kernel 2.4.23

  • Linux Kernel 2.4.24

  • Linux Kernel 2.4.25

  • Linux Kernel 2.4.26

  • Linux Kernel 2.4.27

  • Linux Kernel 2.4.28

  • Linux Kernel 2.4.29

  • Linux Kernel 2.4.3

  • Linux Kernel 2.4.30

  • Linux Kernel 2.4.31

  • Linux Kernel 2.4.32

  • Linux Kernel 2.4.33

  • Linux Kernel 2.4.33.1

  • Linux Kernel 2.4.33.2

  • Linux Kernel 2.4.33.3

  • Linux Kernel 2.4.33.4

  • Linux Kernel 2.4.33.5

  • Linux Kernel 2.4.33.7

  • Linux Kernel 2.4.34

  • Linux Kernel 2.4.34.1

  • Linux Kernel 2.4.34.2

  • Linux Kernel 2.4.34.3

  • Linux Kernel 2.4.34.4

  • Linux Kernel 2.4.34.5

  • Linux Kernel 2.4.34.6

  • Linux Kernel 2.4.35.1

  • Linux Kernel 2.4.35.2

  • Linux Kernel 2.4.35.3

  • Linux Kernel 2.4.35.4

  • Linux Kernel 2.4.35.5

  • Linux Kernel 2.4.36

  • Linux Kernel 2.4.36.1

  • Linux Kernel 2.4.36.2

  • Linux Kernel 2.4.36.3

  • Linux Kernel 2.4.36.4

  • Linux Kernel 2.4.36.5

  • Linux Kernel 2.4.36.6

  • Linux Kernel 2.4.36.7

  • Linux Kernel 2.4.36.8

  • Linux Kernel 2.4.36.9

  • Linux Kernel 2.4.37

  • Linux Kernel 2.4.37.1

  • Linux Kernel 2.4.37.2

  • Linux Kernel 2.4.37.3

  • Linux Kernel 2.4.37.4

  • Linux Kernel 2.4.37.5

  • Linux Kernel 2.4.37.6

  • Linux Kernel 2.4.4

  • Linux Kernel 2.4.5

  • Linux Kernel 2.4.6

  • Linux Kernel 2.4.7

  • Linux Kernel 2.4.8

  • Linux Kernel 2.4.9

  • Linux Kernel 2.6.0

  • Linux Kernel 2.6.1

  • Linux Kernel 2.6.10

  • Linux Kernel 2.6.11

  • Linux Kernel 2.6.11.1

  • Linux Kernel 2.6.11.10

  • Linux Kernel 2.6.11.11

  • Linux Kernel 2.6.11.12

  • Linux Kernel 2.6.11.2

  • Linux Kernel 2.6.11.3

  • Linux Kernel 2.6.11.4

  • Linux Kernel 2.6.11.5

  • Linux Kernel 2.6.11.6

  • Linux Kernel 2.6.11.7

  • Linux Kernel 2.6.11.8

  • Linux Kernel 2.6.11.9

  • Linux Kernel 2.6.12

  • Linux Kernel 2.6.12.1

  • Linux Kernel 2.6.12.2

  • Linux Kernel 2.6.12.3

  • Linux Kernel 2.6.12.4

  • Linux Kernel 2.6.12.5

  • Linux Kernel 2.6.12.6

  • Linux Kernel 2.6.13

  • Linux Kernel 2.6.13.1

  • Linux Kernel 2.6.13.2

  • Linux Kernel 2.6.13.3

  • Linux Kernel 2.6.13.4

  • Linux Kernel 2.6.13.5

  • Linux Kernel 2.6.14


References

XF - kernel-sysctl-interface-dos(23040)

VUPEN - ADV-2005-2359

UBUNTU - USN-219-1

BID - 15365

FEDORA - FLSA:157459-2

FEDORA - FLSA:157459-1

FEDORA - FLSA:157459-4

FEDORA - FLSA:157459-3

REDHAT - RHSA-2006:0191

REDHAT - RHSA-2006:0190

REDHAT - RHSA-2006:0140

REDHAT - RHSA-2006:0101

OSVDB - 20676

MANDRIVA - MDKSA-2006:059

CONFIRM - http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.14.1

DEBIAN - DSA-1018

DEBIAN - DSA-1017

SECTRACK - 1015434

SECUNIA - 19374

SECUNIA - 19369

SECUNIA - 18684

SECUNIA - 18562

SECUNIA - 18510

SECUNIA - 17648

SECUNIA - 17541

SECUNIA - 17504


Last Updated: 27 May 2016 10:59:53