CVE-2005-0003
NONE EPSS 40.0%
Published Apr 14, 200521y ago · Modified Jun 16, 20262w ago
Published Apr 14, 2005 21y ago
Last Modified Jun 16, 2026 2w ago
Description
The 64 bit ELF support in Linux kernel 2.6 before 2.6.10, on 64-bit architectures, does not properly check for overlapping VMA (virtual memory address) allocations, which allows local users to cause a denial of service (system crash) or execute arbitrary code via a crafted ELF or a.out file.
Threat Intelligence
EPSS Exploit Probability
40.0% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Affected Products 97
| Vendor | Product | Version | Range |
|---|---|---|---|
| avaya | mn100 | * | any |
| avaya | network_routing | * | any |
| avaya | converged_communications_server | 2.0 | any |
| avaya | s8710 | r2.0.0 | any |
| avaya | s8710 | r2.0.1 | any |
| avaya | modular_messaging_message_storage_server | 1.1 | any |
| avaya | modular_messaging_message_storage_server | 2.0 | any |
| linux | linux_kernel | 2.4.0 | any |
| linux | linux_kernel | 2.4.0 | any |
| linux | linux_kernel | 2.4.0 | any |
| linux | linux_kernel | 2.4.0 | any |
| linux | linux_kernel | 2.4.0 | any |
| linux | linux_kernel | 2.4.0 | any |
| linux | linux_kernel | 2.4.0 | any |
| linux | linux_kernel | 2.4.0 | any |
| linux | linux_kernel | 2.4.0 | any |
| linux | linux_kernel | 2.4.0 | any |
| linux | linux_kernel | 2.4.0 | any |
| linux | linux_kernel | 2.4.0 | any |
| linux | linux_kernel | 2.4.0 | any |
| linux | linux_kernel | 2.4.1 | any |
| linux | linux_kernel | 2.4.2 | any |
| linux | linux_kernel | 2.4.3 | any |
| linux | linux_kernel | 2.4.4 | any |
| linux | linux_kernel | 2.4.5 | any |
| linux | linux_kernel | 2.4.6 | any |
| linux | linux_kernel | 2.4.7 | any |
| linux | linux_kernel | 2.4.8 | any |
| linux | linux_kernel | 2.4.9 | any |
| linux | linux_kernel | 2.4.10 | any |
| linux | linux_kernel | 2.4.11 | any |
| linux | linux_kernel | 2.4.12 | any |
| linux | linux_kernel | 2.4.13 | any |
| linux | linux_kernel | 2.4.14 | any |
| linux | linux_kernel | 2.4.15 | any |
| linux | linux_kernel | 2.4.16 | any |
| linux | linux_kernel | 2.4.17 | any |
| linux | linux_kernel | 2.4.18 | any |
| linux | linux_kernel | 2.4.18 | any |
| linux | linux_kernel | 2.4.18 | any |
| linux | linux_kernel | 2.4.18 | any |
| linux | linux_kernel | 2.4.18 | any |
| linux | linux_kernel | 2.4.18 | any |
| linux | linux_kernel | 2.4.18 | any |
| linux | linux_kernel | 2.4.18 | any |
| linux | linux_kernel | 2.4.18 | any |
| linux | linux_kernel | 2.4.18 | any |
| linux | linux_kernel | 2.4.19 | any |
| linux | linux_kernel | 2.4.19 | any |
| linux | linux_kernel | 2.4.19 | any |
| linux | linux_kernel | 2.4.19 | any |
| linux | linux_kernel | 2.4.19 | any |
| linux | linux_kernel | 2.4.19 | any |
| linux | linux_kernel | 2.4.19 | any |
| linux | linux_kernel | 2.4.20 | any |
| linux | linux_kernel | 2.4.21 | any |
| linux | linux_kernel | 2.4.21 | any |
| linux | linux_kernel | 2.4.21 | any |
| linux | linux_kernel | 2.4.21 | any |
| linux | linux_kernel | 2.4.22 | any |
| linux | linux_kernel | 2.4.23 | any |
| linux | linux_kernel | 2.4.23 | any |
| linux | linux_kernel | 2.4.23_ow2 | any |
| linux | linux_kernel | 2.4.24 | any |
| linux | linux_kernel | 2.4.24_ow1 | any |
| linux | linux_kernel | 2.4.25 | any |
| linux | linux_kernel | 2.4.26 | any |
| linux | linux_kernel | 2.4.27 | any |
| linux | linux_kernel | 2.4.27 | any |
| linux | linux_kernel | 2.4.27 | any |
| linux | linux_kernel | 2.4.27 | any |
| linux | linux_kernel | 2.4.27 | any |
| linux | linux_kernel | 2.4.27 | any |
| linux | linux_kernel | 2.4.28 | any |
| linux | linux_kernel | 2.4.29 | any |
| linux | linux_kernel | 2.4.29 | any |
| mandrakesoft | mandrake_linux | 9.2 | any |
| mandrakesoft | mandrake_linux | 9.2 | any |
| mandrakesoft | mandrake_linux | 10.0 | any |
| mandrakesoft | mandrake_linux | 10.0 | any |
| mandrakesoft | mandrake_linux | 10.1 | any |
| mandrakesoft | mandrake_linux | 10.1 | any |
| mandrakesoft | mandrake_linux_corporate_server | 2.1 | any |
| mandrakesoft | mandrake_linux_corporate_server | 2.1 | any |
| mandrakesoft | mandrake_linux_corporate_server | 3.0 | any |
| redhat | enterprise_linux | 3.0 | any |
| redhat | enterprise_linux | 3.0 | any |
| redhat | enterprise_linux | 3.0 | any |
| redhat | enterprise_linux_desktop | 3.0 | any |
| avaya | intuity_audix | * | any |
| mandrakesoft | mandrake_multi_network_firewall | 8.2 | any |
| avaya | s8300 | r2.0.0 | any |
| avaya | s8300 | r2.0.1 | any |
| avaya | s8500 | r2.0.0 | any |
| avaya | s8500 | r2.0.1 | any |
| avaya | s8700 | r2.0.0 | any |
| avaya | s8700 | r2.0.1 | any |
References 18
- linux.bkbits.net http://linux.bkbits.net:8080/linux-2.4/cset%4041c36fb6q1Z68WUzKQFjJR-40Ev3tw
- linux.bkbits.net http://linux.bkbits.net:8080/linux-2.6/cset%4041a6721cce-LoPqkzKXudYby_3TUmg
- secunia.com http://secunia.com/advisories/20163
- secunia.com http://secunia.com/advisories/20202
- secunia.com http://secunia.com/advisories/20338
- securitytracker.com http://securitytracker.com/id?1012885
- debian.org http://www.debian.org/security/2006/dsa-1067
- debian.org http://www.debian.org/security/2006/dsa-1069
- debian.org http://www.debian.org/security/2006/dsa-1070
- debian.org http://www.debian.org/security/2006/dsa-1082
- mandriva.com http://www.mandriva.com/security/advisories?name=MDKSA-2005:022
- novell.com http://www.novell.com/linux/security/advisories/2005_18_kernel.html
- redhat.com http://www.redhat.com/support/errata/RHSA-2005-017.html
- redhat.com http://www.redhat.com/support/errata/RHSA-2005-043.html
- securityfocus.com http://www.securityfocus.com/bid/12261
- trustix.org http://www.trustix.org/errata/2005/0001/
- exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/18886
- oval.cisecurity.org https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9512
Remediation
- redhat.com http://www.redhat.com/support/errata/RHSA-2005-043.html
- securityfocus.com http://www.securityfocus.com/bid/12261