PT-2005-5037 · Freebsd+3 · Freebsd+3

Published

2005-12-31

Updated

2017-07-20

CVE-2005-4351

CVSS v2.0

4.3

Medium

Vector

AV:L/AC:L/Au:S/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions FreeBSD versions 7.0 and earlier OpenBSD versions up to 3.8 DragonFly versions up to 1.2 Linux versions up to 2.6.15

Description The securelevels implementation allows root users to bypass immutable settings for files by mounting another filesystem that masks the immutable files while the system is running.

Recommendations For FreeBSD versions 7.0 and earlier, consider upgrading to a version later than 7.0 to resolve the issue. For OpenBSD versions up to 3.8, consider upgrading to a version later than 3.8 to resolve the issue. For DragonFly versions up to 1.2, consider upgrading to a version later than 1.2 to resolve the issue. For Linux versions up to 2.6.15, consider upgrading to a version later than 2.6.15 to resolve the issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-4351

Affected Products

Dragonfly

Freebsd

Linux

Openbsd

PT-2005-5037 · Freebsd+3 · Freebsd+3

CVE-2005-4351

Related Identifiers

Affected Products

References · 6