Published: 02/05/2005 Updated: 05/09/2008

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

VMScore: 465

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

Unknown vulnerability in PaX from the September 2003 release to 2.2 prior to 2005.03.05, related to SEGMEXEC or RANDEXEC and VMA mirroring, allows local users and possibly remote malicious users to bypass intended access restrictions and execute arbitrary code.

Vulnerable Product	Search on Vulmon	Subscribe to Product
the pax team pax linux 2.4.21
the pax team pax linux 2.4.22
the pax team pax linux 2.4.23
the pax team pax linux 2.4.24
the pax team pax linux 2.2
the pax team pax linux 2.4.26
the pax team pax linux 2.4.28
the pax team pax linux 2.6.5
the pax team pax linux 2.4.20
the pax team pax linux 2.4.25
the pax team pax linux 2.4.27

/* * PaX double-mirrored VMA munmap local root exploit * * Copyright (C) 2005 Christophe Devine * * This exploit has only been tested on Debian 30 running Linux 2429 * patched with grsecurity-211-2429-200501231159 * * $ gcc paxomaticc * $ /chpax -m aout * $ /aout * * usage: ping [-LRdfnqrv] [-c count] [-i wait] ...

NVD-CWE-Other http://www.securityfocus.com/archive/1/392348 http://www.securityfocus.com/bid/12729 http://secunia.com/advisories/14489 https://nvd.nist.gov https://www.exploit-db.com/exploits/876/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2005-0666

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect