← back
CVE-2005-3257

CVE-2005-3257

EPSS 1.1%
The VT implementation (vt_ioctl.c) in Linux kernel 2.6.12, and possibly other versions including 2.6.14.4, allows local users to use the KDSKBSENT ioctl on terminals of other users and gain privileges, as demonstrated by modifying key bindings using loadkeys.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/26353unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=334113http://rhn.redhat.com/errata/RHBA-2007-0304.htmlhttp://secunia.com/advisories/17226http://secunia.com/advisories/17826http://secunia.com/advisories/17995http://secunia.com/advisories/18203http://secunia.com/advisories/19185http://secunia.com/advisories/19369http://secunia.com/advisories/19374https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10615https://usn.ubuntu.com/231-1/http://www.debian.org/security/2006/dsa-1017