Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6434

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2007-6434
Last Modified 07 Mar 2011 10:02:43
Published 18 Dec 2007 03:46:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2007-6434

Summary

Linux kernel 2.6.23 allows local users to create low pages in virtual userspace memory and bypass mmap_min_addr protection via a crafted executable file that calls the do_brk function.

Vulnerable Systems

Operating System

  • Linux Kernel 2.6.23


References

VUPEN - ADV-2007-4200

SECUNIA - 28070

OSVDB - 40907

CONFIRM - http://kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.24-rc5

BID - 26831


Last Updated: 27 May 2016 10:46:30