PT-2004-2258 · Linux · Linux Kernel

Published

2004-12-23

Updated

2017-07-11

CVE-2004-1337

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Linux kernel version 2.6

Description: The issue arises from the POSIX Capability Linux Security Module (LSM) not properly handling process credentials when launched before the module is loaded. This allows local users to gain privileges.

Recommendations: For Linux kernel version 2.6, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2004-1337

Affected Products

Linux Kernel

PT-2004-2258 · Linux · Linux Kernel

CVE-2004-1337

Related Identifiers

Affected Products

References · 5