Vulnerability Name: | CVE-2005-3106 |
Assigned: | 2005-01-15 |
Published: | 2005-01-15 |
Updated: | 2018-10-19 |
Summary: | Race condition in Linux 2.6, when threads are sharing memory mapping via CLONE_VM (such as linuxthreads and vfork), might allow local users to cause a denial of service (deadlock) by triggering a core dump while waiting for a thread that has just performed an exec. |
CVSS v3 Severity: | 2.9 Low (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L)Exploitability Metrics: | Attack Vector (AV): Local Attack Complexity (AC): High Privileges Required (PR): None User Interaction (UI): None | Scope: | Scope (S): Unchanged
| Impact Metrics: | Confidentiality (C): None Integrity (I): None Availibility (A): Low |
|
CVSS v2 Severity: | 1.2 Low (CVSS v2 Vector: AV:L/AC:H/Au:N/C:N/I:N/A:P)Exploitability Metrics: | Access Vector (AV): Local Access Complexity (AC): High Authentication (Au): None | Impact Metrics: | Confidentiality (C): None Integrity (I): None Availibility (A): Partial | 1.2 Low (CCN CVSS v2 Vector: AV:L/AC:H/Au:N/C:N/I:N/A:P)Exploitability Metrics: | Access Vector (AV): Local Access Complexity (AC): High Athentication (Au): None
| Impact Metrics: | Confidentiality (C): None Integrity (I): None Availibility (A): Partial |
|
Vulnerability Type: | CWE-Other
|
References: | Source: MITRE Type: CNA CVE-2005-3106
Source: CONFIRM Type: Broken Link http://linux.bkbits.net:8080/linux-2.6/diffs/fs/exec.c@1.156?nav=index.html|src/|src/fs|hist/fs/exec.c
Source: SECUNIA Type: UNKNOWN 17141
Source: SECUNIA Type: UNKNOWN 18056
Source: SECUNIA Type: UNKNOWN 18510
Source: DEBIAN Type: UNKNOWN DSA-922
Source: MANDRIVA Type: UNKNOWN MDKSA-2006:072
Source: REDHAT Type: UNKNOWN RHSA-2006:0101
Source: FEDORA Type: UNKNOWN FLSA:157459-3
Source: BID Type: UNKNOWN 15049
Source: UBUNTU Type: UNKNOWN USN-199-1
Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:9108
|
Vulnerable Configuration: | Configuration 1: cpe:/o:linux:linux_kernel:2.6.0:-:*:*:*:*:*:* Configuration RedHat 1: cpe:/o:redhat:enterprise_linux:4:*:*:*:*:*:*:* Configuration RedHat 2: cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:* Configuration RedHat 3: cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:* Configuration RedHat 4: cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:* Configuration RedHat 5: cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*
Denotes that component is vulnerable |
Oval Definitions |
Definition ID | Class | Title | Last Modified |
---|
oval:org.mitre.oval:def:9108 | V | Race condition in Linux 2.6, when threads are sharing memory mapping via CLONE_VM (such as linuxthreads and vfork), might allow local users to cause a denial of service (deadlock) by triggering a core dump while waiting for a thread that has just performed an exec. | 2013-04-29 | oval:com.redhat.rhsa:def:20060101 | P | RHSA-2006:0101: kernel security update (Important) | 2006-01-17 | oval:org.debian:def:922 | V | several vulnerabilities | 2005-12-14 |
|
BACK |