Published: 09/03/2005 Updated: 07/11/2023

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

VMScore: 220

Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N

Integer overflow in sys_epoll_wait in eventpoll.c for Linux kernel 2.6 to 2.6.11 allows local users to overwrite kernel memory via a large number of events.

Vulnerable Product	Search on Vulmon	Subscribe to Product
conectiva linux 10.0
linux linux kernel 2.6.11
redhat fedora core core_2.0
redhat enterprise linux 4.0
linux linux kernel 2.6.5
linux linux kernel 2.6.1
linux linux kernel 2.6.10
linux linux kernel 2.6.3
linux linux kernel 2.6.4
linux linux kernel 2.6.2
linux linux kernel 2.6.8
linux linux kernel 2.6.0
linux linux kernel 2.6.7
linux linux kernel 2.6.9
redhat enterprise linux desktop 4.0
redhat fedora core core_3.0
linux linux kernel 2.6.6

Synopsis kernel security update Type/Severity Security Advisory: Important Topic Updated kernel packages that fix several security issues in the Red HatEnterprise Linux 3 kernel are now availableThis security advisory has been rated as having important security impactby the Red Hat Security Response TeamT ...

Synopsis kernel security update Type/Severity Security Advisory: Important Topic Updated kernel packages that fix several security issues are now availablefor Red Hat Enterprise Linux 4This update has been rated as having important security impact by the RedHat Security Response Team[Updated 9 August 2005 ...

A remote Denial of Service vulnerability was discovered in the Netfilter IP packet handler This allowed a remote attacker to crash the machine by sending specially crafted IP packet fragments (CAN-2005-0209) ...

/* * k-rad3c - linux 2611 and below CPL 0 kernel local exploit v3 * Discovered and original exploit coded Jan 2005 by sd <sd@fucksheeporg> * ********************************************************************* * * Modified 2005/9 by alert7 <alert7@xfocusorg> * XFOCUS Security Team wwwxfocusorg * * gcc -o k-rad3 k-rad3c - ...

/* EDB Note: Updated exploit can be found here; wwwexploit-dbcom/exploits/25203/ source: wwwsecurityfocuscom/bid/12763/info A Local integer overflow vulnerability affects the Linux kernel This issue is due to a failure of the affected kernel to properly handle user-supplied size values An attacker may leverage this issue to ...

NVD-CWE-Other http://lists.grok.org.uk/pipermail/full-disclosure/2005-March/032314.html http://www.novell.com/linux/security/advisories/2005_18_kernel.html http://www.securityfocus.com/bid/12763 http://www.redhat.com/support/errata/RHSA-2005-293.html http://www.redhat.com/support/errata/RHSA-2005-366.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9870 https://usn.ubuntu.com/95-1/http://linux.bkbits.net:8080/linux-2.6/cset%40422dd06a1p5PsyFhoGAJseinjEq3ew?nav=index.html%7CChangeSet%40-1d https://access.redhat.com/errata/RHSA-2005:293 https://usn.ubuntu.com/95-1/https://nvd.nist.gov https://www.exploit-db.com/exploits/1397/

CVE-2005-0736

Vulnerability Summary

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect