Main Vulnerability Database Exploits ID:10295 - Exploit for Resource management errors in Linux kernel - CVE-2005-2709

ID:10295 - Exploit for Resource management errors in Linux kernel - CVE-2005-2709

Published: August 2, 2024

Vulnerability identifier: #VU95242

Vulnerability risk: Low

CVE-ID: CVE-2005-2709

CWE-ID: CWE-399

Exploitation vector: Local access

Vulnerable software:
Linux kernel

Link to public exploit:

https://www.exploit-db.com/exploits/26489/

Vulnerability description

The vulnerability allows a local user to read and manipulate data.

The sysctl functionality (sysctl.c) in Linux kernel before 2.6.14.1 allows local users to cause a denial of service (kernel oops) and possibly execute code by opening an interface file in /proc/sys/net/ipv4/conf/, waiting until the interface is unregistered, then obtaining and modifying function pointers in memory that was used for the ctl_table.

Remediation

Install update from vendor's repository.

ID:10295 - Exploit for Resource management errors in Linux kernel - CVE-2005-2709

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human