PT-2004-2085 · Great Internet Mersenne Prime Search · Gimps

Published

2004-12-01

Updated

2017-07-11

CVE-2004-1116

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Great Internet Mersenne Prime Search (GIMPS) versions 23.9 and earlier

Description: The issue allows local users to gain privileges by modifying user-owned programs that are executed with root privileges by the init scripts.

Recommendations: For GIMPS versions 23.9 and earlier, consider restricting the execution of user-owned programs by the init scripts until a fix is available. As a temporary workaround, review and monitor user-owned programs for any modifications to prevent potential exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2004-1116

Affected Products

Gimps

PT-2004-2085 · Great Internet Mersenne Prime Search · Gimps

CVE-2004-1116

Related Identifiers

Affected Products

References · 3