4.6

CVE-2005-3257

Exploit
The VT implementation (vt_ioctl.c) in Linux kernel 2.6.12, and possibly other versions including 2.6.14.4, allows local users to use the KDSKBSENT ioctl on terminals of other users and gain privileges, as demonstrated by modifying key bindings using loadkeys.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version2.6.12
LinuxLinux Kernel Version2.6.14.4
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.06% 0.6
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.6 3.9 6.4
AV:L/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/17826
Vendor Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2005:218
http://www.mandriva.com/security/advisories?name=MDKSA-2005:219
http://secunia.com/advisories/19374
Vendor Advisory
http://www.debian.org/security/2006/dsa-1017
http://secunia.com/advisories/19369
Vendor Advisory
http://www.debian.org/security/2006/dsa-1018
http://secunia.com/advisories/19185
Vendor Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2005:220
http://rhn.redhat.com/errata/RHBA-2007-0304.html
http://www.mandriva.com/security/advisories?name=MDKSA-2005:235
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=334113
Vendor Advisory
Exploit
http://secunia.com/advisories/17226
Vendor Advisory
http://secunia.com/advisories/17995
Vendor Advisory
http://secunia.com/advisories/18203
Vendor Advisory
http://www.securityfocus.com/bid/15122
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10615
https://usn.ubuntu.com/231-1/