CVE-2003-0476

Name of the Vulnerable Software and Affected Versions Linux kernel versions 2.4.x Red Hat Linux kernel versions 2.4.20

Description The issue affects the Linux kernel and Red Hat Linux, allowing for potential exploitation that could compromise confidentiality, integrity, and availability of protected information. This can be exploited remotely. A specific concern is with the execve system call in Linux 2.4.x, which records the file descriptor of the executable process in the file table of the calling process. This allows local users to gain read access to restricted file descriptors.

Recommendations For Linux kernel version 2.4.x, consider updating to a version that addresses these vulnerabilities. For Red Hat Linux kernel version 2.4.20, consider updating to a version that addresses these vulnerabilities. As a temporary workaround, consider restricting access to sensitive areas of the system to minimize the risk of exploitation.