Executive Summary
Summary | |
---|---|
Title | Updated kernel packages address security vulnerabilities, bugfixes |
Informations | |||
---|---|---|---|
Name | RHSA-2003:408 | First vendor Publication | 2003-12-19 |
Vendor | RedHat | Last vendor Modification | 2003-12-19 |
Severity (Vendor) | N/A | Revision | 00 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:L/AC:L/Au:N/C:P/I:N/A:N) | |||
---|---|---|---|
Cvss Base Score | 2.1 | Attack Range | Local |
Cvss Impact Score | 2.9 | Attack Complexity | Low |
Cvss Expoit Score | 3.9 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Problem Description: |
Original Source
Url : https://rhn.redhat.com/errata/RHSA-2003-408.html |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:327 | |||
Oval ID: | oval:org.mitre.oval:def:327 | ||
Title: | Linux Kernel execve Read Access to Restricted File Descriptors | ||
Description: | The execve system call in Linux 2.4.x records the file descriptor of the executable process in the file table of the calling process, which allows local users to gain read access to restricted file descriptors. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2003-0476 | Version: | 4 |
Platform(s): | Red Hat Linux 9 | Product(s): | Linux kernel |
Definition Synopsis: | |||
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Os | 1 |
OpenVAS Exploits
Date | Description |
---|---|
2008-01-17 | Name : Debian Security Advisory DSA 358-1 (linux-kernel-i386, linux-kernel-alpha) File : nvt/deb_358_1.nasl |
2008-01-17 | Name : Debian Security Advisory DSA 423-1 (kernel-image-2.4.17-ia64) File : nvt/deb_423_1.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
10296 | Linux Kernel execve System Call Arbitrary File Descriptor Read |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2004-09-29 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-358.nasl - Type : ACT_GATHER_INFO |
2004-09-29 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-423.nasl - Type : ACT_GATHER_INFO |
2004-07-31 | Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2003-074.nasl - Type : ACT_GATHER_INFO |
2004-07-06 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2003-408.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2014-02-17 11:48:18 |
|