CVE-2005-4352

Exploit

EPSS 0.11%
Published 31.12.2005 05:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

The securelevels implementation in NetBSD 2.1 and earlier, and Linux 2.6.15 and earlier, allows local users to bypass time setting restrictions and set the clock backwards by setting the clock ahead to the maximum unixtime value (19 Jan 2038), which then wraps around to the minimum value (13 Dec 1901), which can then be set ahead to the desired time, aka "settimeofday() time wrap."

Affected products Warnungen 0 Metrics 2 CWE 0 References 11

Data is provided by the National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version2.6.0

Linux ≫ Linux Kernel Version2.6.0 Updatetest1

Linux ≫ Linux Kernel Version2.6.0 Updatetest10

Linux ≫ Linux Kernel Version2.6.0 Updatetest11

Linux ≫ Linux Kernel Version2.6.0 Updatetest2

Linux ≫ Linux Kernel Version2.6.0 Updatetest3

Linux ≫ Linux Kernel Version2.6.0 Updatetest4

Linux ≫ Linux Kernel Version2.6.0 Updatetest5

Linux ≫ Linux Kernel Version2.6.0 Updatetest6

Linux ≫ Linux Kernel Version2.6.0 Updatetest7

Linux ≫ Linux Kernel Version2.6.0 Updatetest8

Linux ≫ Linux Kernel Version2.6.0 Updatetest9

Linux ≫ Linux Kernel Version2.6.1

Linux ≫ Linux Kernel Version2.6.1 Updaterc1

Linux ≫ Linux Kernel Version2.6.1 Updaterc2

Linux ≫ Linux Kernel Version2.6.2

Linux ≫ Linux Kernel Version2.6.3

Linux ≫ Linux Kernel Version2.6.4

Linux ≫ Linux Kernel Version2.6.5

Linux ≫ Linux Kernel Version2.6.6

Linux ≫ Linux Kernel Version2.6.6 Updaterc1

Linux ≫ Linux Kernel Version2.6.7

Linux ≫ Linux Kernel Version2.6.7 Updaterc1

Linux ≫ Linux Kernel Version2.6.8

Linux ≫ Linux Kernel Version2.6.8 Updaterc1

Linux ≫ Linux Kernel Version2.6.8 Updaterc2

Linux ≫ Linux Kernel Version2.6.8 Updaterc3

Linux ≫ Linux Kernel Version2.6.9 Update2.6.20

Linux ≫ Linux Kernel Version2.6.10

Linux ≫ Linux Kernel Version2.6.10 Updaterc2

Linux ≫ Linux Kernel Version2.6.11

Linux ≫ Linux Kernel Version2.6.11 Updaterc2

Linux ≫ Linux Kernel Version2.6.11 Updaterc3

Linux ≫ Linux Kernel Version2.6.11 Updaterc4

Linux ≫ Linux Kernel Version2.6.11.5

Linux ≫ Linux Kernel Version2.6.11.6

Linux ≫ Linux Kernel Version2.6.11.7

Linux ≫ Linux Kernel Version2.6.11.8

Linux ≫ Linux Kernel Version2.6.11.11

Linux ≫ Linux Kernel Version2.6.11.12

Linux ≫ Linux Kernel Version2.6.12 Updaterc1

Linux ≫ Linux Kernel Version2.6.12 Updaterc4

Linux ≫ Linux Kernel Version2.6.12 Updaterc5

Linux ≫ Linux Kernel Version2.6.12.1

Linux ≫ Linux Kernel Version2.6.12.2

Linux ≫ Linux Kernel Version2.6.12.3

Linux ≫ Linux Kernel Version2.6.12.4

Linux ≫ Linux Kernel Version2.6.12.5

Linux ≫ Linux Kernel Version2.6.12.6

Linux ≫ Linux Kernel Version2.6.13

Linux ≫ Linux Kernel Version2.6.13 Updaterc1

Linux ≫ Linux Kernel Version2.6.13 Updaterc4

Linux ≫ Linux Kernel Version2.6.13 Updaterc6

Linux ≫ Linux Kernel Version2.6.13 Updaterc7

Linux ≫ Linux Kernel Version2.6.13.1

Linux ≫ Linux Kernel Version2.6.13.2

Linux ≫ Linux Kernel Version2.6.13.3

Linux ≫ Linux Kernel Version2.6.13.4

Linux ≫ Linux Kernel Version2.6.14

Linux ≫ Linux Kernel Version2.6.14 Updaterc1

Linux ≫ Linux Kernel Version2.6.14 Updaterc2

Linux ≫ Linux Kernel Version2.6.14 Updaterc3

Linux ≫ Linux Kernel Version2.6.14 Updaterc4

Linux ≫ Linux Kernel Version2.6.14.1

Linux ≫ Linux Kernel Version2.6.14.2

Linux ≫ Linux Kernel Version2.6.14.3

Linux ≫ Linux Kernel Version2.6.15

Linux ≫ Linux Kernel Version2.6.15 Updaterc1

Linux ≫ Linux Kernel Version2.6.15 Updaterc3

Linux ≫ Linux Kernel Version2.6_test9_cvs

Netbsd ≫ Netbsd Version1.6

Netbsd ≫ Netbsd Version1.6 Updatebeta

Netbsd ≫ Netbsd Version1.6.1

Netbsd ≫ Netbsd Version1.6.2

Netbsd ≫ Netbsd Version2.0

Netbsd ≫ Netbsd Version2.0.1

Netbsd ≫ Netbsd Version2.0.2

Netbsd ≫ Netbsd Version2.0.3

Netbsd ≫ Netbsd Version2.1

Netbsd ≫ Netbsd Versioncurrent

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.11%	0.257

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	2.1	3.9	2.9	AV:L/AC:L/Au:N/C:N/I:P/A:N

http://lists.grok.org.uk/pipermail/full-disclosure/2006-January/041178.html

Vendor Advisory

Exploit

http://secunia.com/advisories/25691

http://securitytracker.com/id?1015454

http://www.redteam-pentesting.de/advisories/rt-sa-2005-16.txt

Vendor Advisory

Exploit

http://www.securityfocus.com/archive/1/421426/100/0/threaded

http://www.securityfocus.com/archive/1/471457

http://www.securityfocus.com/bid/16170

Patch

https://exchange.xforce.ibmcloud.com/vulnerabilities/24036

https://nvd.nist.gov/vuln/detail/CVE-2005-4352

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2005-4352

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2005-4352

EUVD