Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4573

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2007-4573
Last Modified 07 Mar 2011 09:58:48
Published 24 Sep 2007 06:17:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2007-4573

Summary

The IA32 system call emulation functionality in Linux kernel 2.4.x and 2.6.x before 2.6.22.7, when running on the x86_64 architecture, does not zero extend the eax register after the 32bit entry path to ptrace is used, which might allow local users to gain privileges by triggering an out-of-bounds access to the system call table using the %RAX register.

Vulnerable Systems

Operating System

  • Linux Kernel 2.4.35

  • Linux Kernel 2.6.22.6


References

MLIST - [linux-kernel] 20070921 Linux 2.6.22.7

VUPEN - ADV-2007-3246

CONFIRM - http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.7

FULLDISC - 20070924 COSEINC Linux Advisory #2: IA32 System Call

MLIST - [linux-kernel] 20070921 Re: Linux 2.6.22.7

FEDORA - FEDORA-2007-712

CONFIRM - https://issues.rpath.com/browse/RPL-1754

UBUNTU - USN-518-1

BID - 25774

BUGTRAQ - 20070926 Re: COSEINC Linux Advisory #2: IA32 System CallEmulation Vulnerability

BUGTRAQ - 20070924 COSEINC Linux Advisory #2: IA32 System Call Emulation Vulnerability

REDHAT - RHSA-2007:0938

REDHAT - RHSA-2007:0937

REDHAT - RHSA-2007:0936

SUSE - SUSE-SA:2007:053

MANDRIVA - MDVSA-2008:105

MANDRIVA - MDVSA-2008:008

MANDRIVA - MDKSA-2007:196

MANDRIVA - MDKSA-2007:195

DEBIAN - DSA-1504

DEBIAN - DSA-1381

DEBIAN - DSA-1378

SECTRACK - 1018748

SECUNIA - 29058

SECUNIA - 27912

SECUNIA - 27227

SECUNIA - 27212

SECUNIA - 26995

SECUNIA - 26994

SECUNIA - 26978

SECUNIA - 26955

SECUNIA - 26953

SECUNIA - 26934

SECUNIA - 26919

SECUNIA - 26917

SUSE - SUSE-SA:2007:064

CONFIRM - http://kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.35.3

FEDORA - FEDORA-2007-2298


Last Updated: 27 May 2016 10:45:54