CVE-2003-0019

Name of the Vulnerable Software and Affected Versions kernel-utils versions in Red Hat Linux 8.0

Description The issue concerns incorrect setuid root privileges in the kernel-utils package, allowing local users to modify network interfaces. This can be done by modifying ARP entries or placing interfaces into promiscuous mode. Multiple vulnerabilities in the kernel-utils package may lead to breaches of confidentiality, integrity, and availability of protected information, and these can be exploited locally.

Recommendations For kernel-utils in Red Hat Linux 8.0, consider removing setuid root privileges from the uml net utility as a temporary workaround to prevent local users from modifying network interfaces until a patch is available. Restrict access to network interface modification tools to minimize the risk of exploitation.