← voltar
CVE-2005-1263

CVE-2005-1263

EPSS 1.8%
The elf_core_dump function in binfmt_elf.c for Linux kernel 2.x.x to 2.2.27-rc2, 2.4.x to 2.4.31-pre1, and 2.6.x to 2.6.12-rc4 allows local users to execute arbitrary code via an ELF binary that, in certain conditions involving the create_elf_tables function, causes a negative length argument to pass a signed integer comparison, leading to a buffer overflow.
Produtos afetados
n/a · n/a
PoCs públicas encontradas1
exploitdbwww.exploit-db.com/exploits/25647não verificado
⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
ftp://patches.sgi.com/support/free/security/advisories/20060402-01-Uhttp://secunia.com/advisories/19185http://secunia.com/advisories/19607https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10909https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1122http://www.isec.pl/vulnerabilities/isec-0023-coredump.txthttp://www.redhat.com/support/errata/RHSA-2005-472.htmlhttp://www.redhat.com/support/errata/RHSA-2005-529.htmlhttp://www.redhat.com/support/errata/RHSA-2005-551.htmlhttp://www.securityfocus.com/archive/1/397966http://www.securityfocus.com/archive/1/427980/100/0/threadedhttp://www.securityfocus.com/archive/1/428028/100/0/threaded