|
|
Linux Kernel chown() System Call Group Ownership Alteration Vulnerability
|
Bugtraq ID:
|
10662
|
|
Class:
|
Access Validation Error
|
|
CVE:
|
CVE-2004-0497
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Jul 05 2004 12:00AM
|
|
Updated:
|
Jul 12 2009 06:16AM
|
|
Credit:
|
This issue has been discovered by Michael Schroeder and Ruediger Oertel, of SuSE Linux.
|
|
Vulnerable:
|
Trustix Secure Linux 2.1
Trustix Secure Linux 2.0
Trustix Secure Enterprise Linux 2.0
S.u.S.E. Linux Personal 9.1
RedHat Fedora Core2
RedHat Fedora Core1
RedHat Enterprise Linux WS 3
RedHat Enterprise Linux ES 3
RedHat Enterprise Linux AS 3
RedHat Advanced Workstation for the Itanium Processor 2.1 IA64
Linux kernel 2.6.6
Linux kernel 2.6.5
+
S.u.S.E. Linux Enterprise Server 9
+
S.u.S.E. Linux Personal 9.1 x86_64
+
S.u.S.E. Linux Personal 9.1 x86_64
+
S.u.S.E. Linux Personal 9.1
+
S.u.S.E. Linux Personal 9.1
Linux kernel 2.4.21
+
Conectiva Linux 9.0
+
MandrakeSoft Linux Mandrake 9.1 ppc
+
MandrakeSoft Linux Mandrake 9.1
+
RedHat Desktop 3.0
+
RedHat Enterprise Linux AS 3
+
RedHat Enterprise Linux ES 3
+
RedHat Enterprise Linux WS 3
+
S.u.S.E. Linux Enterprise Server 8
+
S.u.S.E. Linux Personal 9.0 x86_64
+
S.u.S.E. Linux Personal 9.0
Linux kernel 2.4.20
+
CRUX CRUX Linux 1.0
+
Gentoo Linux 1.4
+
Gentoo Linux 1.2
+
RedHat Linux 9.0 i386
+
Slackware Linux 9.0
+
WOLK WOLK 4.4 s
Gentoo Linux 1.4
|
|
|
|
Not Vulnerable:
|
|
|
|
