4.6
CVE-2005-3257
- EPSS 1.06%
- Veröffentlicht 18.10.2005 22:02:00
- Zuletzt bearbeitet 16.06.2026 22:16:35
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The VT implementation (vt_ioctl.c) in Linux kernel 2.6.12, and possibly other versions including 2.6.14.4, allows local users to use the KDSKBSENT ioctl on terminals of other users and gain privileges, as demonstrated by modifying key bindings using loadkeys.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version2.6.12
Linux ≫ Linux Kernel Version2.6.14.4
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.06% | 0.6 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.6 | 3.9 | 6.4 |
AV:L/AC:L/Au:N/C:P/I:P/A:P
|
http://secunia.com/advisories/17826
http://www.mandriva.com/security/advisories?name=MDKSA-2005:218
http://www.mandriva.com/security/advisories?name=MDKSA-2005:219
http://secunia.com/advisories/19374
http://www.debian.org/security/2006/dsa-1017
http://secunia.com/advisories/19369
http://www.debian.org/security/2006/dsa-1018
http://secunia.com/advisories/19185
http://www.mandriva.com/security/advisories?name=MDKSA-2005:220
http://rhn.redhat.com/errata/RHBA-2007-0304.html
http://www.mandriva.com/security/advisories?name=MDKSA-2005:235
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=334113
http://secunia.com/advisories/17226
http://secunia.com/advisories/17995
http://secunia.com/advisories/18203
http://www.securityfocus.com/bid/15122
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10615
https://usn.ubuntu.com/231-1/