← voltar
CVE-2005-3257

CVE-2005-3257

EPSS 1.1%
The VT implementation (vt_ioctl.c) in Linux kernel 2.6.12, and possibly other versions including 2.6.14.4, allows local users to use the KDSKBSENT ioctl on terminals of other users and gain privileges, as demonstrated by modifying key bindings using loadkeys.
Produtos afetados
n/a · n/a
PoCs públicas encontradas1
exploitdbwww.exploit-db.com/exploits/26353não verificado
⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=334113http://rhn.redhat.com/errata/RHBA-2007-0304.htmlhttp://secunia.com/advisories/17226http://secunia.com/advisories/17826http://secunia.com/advisories/17995http://secunia.com/advisories/18203http://secunia.com/advisories/19185http://secunia.com/advisories/19369http://secunia.com/advisories/19374https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10615https://usn.ubuntu.com/231-1/http://www.debian.org/security/2006/dsa-1017