7.2
CVE-2004-1337
- EPSS 0.4%
- Veröffentlicht 23.12.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:07:30
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The POSIX Capability Linux Security Module (LSM) for Linux kernel 2.6 does not properly handle the credentials of a process that is launched before the module is loaded, which allows local users to gain privileges.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Gnu ≫ Realtime Linux Security Module Version0.8.7
Ubuntu ≫ Ubuntu Linux Version4.1 Editionia64
Ubuntu ≫ Ubuntu Linux Version4.1 Editionppc
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.4% | 0.318 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.2 | 3.9 | 10 |
AV:L/AC:L/Au:N/C:C/I:C/A:C
|
http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=000930
http://marc.info/?l=bugtraq&m=110384535113035&w=2
http://www.securityfocus.com/bid/12093
https://exchange.xforce.ibmcloud.com/vulnerabilities/18673