CVE-2005-0666

Unknown vulnerability in PaX from the September 2003 release to 2.2 before 2005.03.05, related to SEGMEXEC or RANDEXEC and VMA mirroring, allows local users and possibly remote attackers to bypass intended access restrictions and execute arbitrary code.

CVSS v2.0 4.6 MEDIUM

4.6^/10

CVSS v2.0 : MEDIUM

Vector : AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 3.9 / Impact : 6.4

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://www.securityfocus.com/archive/1/392348
http://www.securityfocus.com/bid/12729	Exploit
http://secunia.com/advisories/14489

Advertisement

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:the_pax_team:pax_linux:2.4.21:::::::*
	cpe:2.3:a:the_pax_team:pax_linux:2.4.22:::::::*
	cpe:2.3:a:the_pax_team:pax_linux:2.4.23:::::::*
	cpe:2.3:a:the_pax_team:pax_linux:2.4.24:::::::*
	cpe:2.3:a:the_pax_team:pax_linux:2.2:::::::*
	cpe:2.3:a:the_pax_team:pax_linux:2.4.26:::::::*
	cpe:2.3:a:the_pax_team:pax_linux:2.4.28:::::::*
	cpe:2.3:a:the_pax_team:pax_linux:2.6.5:::::::*
	cpe:2.3:a:the_pax_team:pax_linux:2.4.20:::::::*
	cpe:2.3:a:the_pax_team:pax_linux:2.4.25:::::::*
	cpe:2.3:a:the_pax_team:pax_linux:2.4.27:::::::*

Information

Published : 2005-05-01 21:00

Updated : 2008-09-05 13:46

NVD link : CVE-2005-0666

Mitre link : CVE-2005-0666

JSON object : View

CWE

NVD-CWE-Other

Advertisement

Products Affected

the_pax_team

pax_linux

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.securityfocus.com/archive/1/392348", "name": "20050305 PaX privilege elevation security bug", "tags": [], "refsource": "BUGTRAQ"}, {"url": "http://www.securityfocus.com/bid/12729", "name": "12729", "tags": ["Exploit"], "refsource": "BID"}, {"url": "http://secunia.com/advisories/14489", "name": "14489", "tags": [], "refsource": "SECUNIA"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Unknown vulnerability in PaX from the September 2003 release to 2.2 before 2005.03.05, related to SEGMEXEC or RANDEXEC and VMA mirroring, allows local users and possibly remote attackers to bypass intended access restrictions and execute arbitrary code."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2005-0666", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 4.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "severity": "MEDIUM", "impactScore": 6.4, "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": true, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2005-05-02T04:00Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:the_pax_team:pax_linux:2.4.21:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:the_pax_team:pax_linux:2.4.22:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:the_pax_team:pax_linux:2.4.23:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:the_pax_team:pax_linux:2.4.24:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:the_pax_team:pax_linux:2.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:the_pax_team:pax_linux:2.4.26:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:the_pax_team:pax_linux:2.4.28:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:the_pax_team:pax_linux:2.6.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:the_pax_team:pax_linux:2.4.20:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:the_pax_team:pax_linux:2.4.25:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:the_pax_team:pax_linux:2.4.27:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2008-09-05T20:46Z"}