CVE-2004-0496

Current Description

Multiple unknown vulnerabilities in Linux kernel 2.6 allow local users to gain privileges or access kernel memory, a different set of vulnerabilities than those identified in CVE-2004-0495, as found by the Sparse source code checking tool.

Basic Data

PublishedDecember 06, 2004
Last ModifiedOctober 30, 2018
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeNVD-CWE-Other
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS 2 - Access VectorLOCAL
CVSS 2 - Access ComplexityLOW
CVSS 2 - AuthenticationNONE
CVSS 2 - Confidentiality ImpactCOMPLETE
CVSS 2 - Availability ImpactCOMPLETE
CVSS 2 - Base Score7.2
SeverityHIGH
Exploitability Score3.9
Impact Score10.0
Obtain All Privilegetrue
Obtain User Privilegefalse
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3ApplicationMandrakesoftMandrake Multi Network Firewall8.2*******
    2.3ApplicationSuseSuse Email Server3*******
    2.3ApplicationSuseSuse Email Server3.1*******
    2.3ApplicationSuseSuse Linux Connectivity Server********
    2.3ApplicationSuseSuse Linux Database Server********
    2.3ApplicationSuseSuse Linux Firewall********
    2.3ApplicationSuseSuse Linux Office Server********
  • OR - Configuration 2
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3OSGentooLinux********
    2.3OSLinuxLinux Kernel2.6.0*******
    2.3OSMandrakesoftMandrake Linux9.1*******
    2.3OSMandrakesoftMandrake Linux9.2*******
    2.3OSMandrakesoftMandrake Linux10.0*******
    2.3OSMandrakesoftMandrake Linux Corporate Server2.1*******
    2.3OSSunSolaris9.0*sparc*****
    2.3OSSunSunos5.8*******
    2.3OSSunSunos5.9*******
    2.3OSSuseSuse Linux7*enterprise_server*****
    2.3OSSuseSuse Linux8*enterprise_server*****

Vulnerable Software List

VendorProductVersions
Mandrakesoft Mandrake Multi Network Firewall 8.2
Mandrakesoft Mandrake Linux 10.0, 9.1, 9.2
Mandrakesoft Mandrake Linux Corporate Server 2.1
Sun Solaris 9.0
Sun Sunos 5.8, 5.9
Linux Linux Kernel 2.6.0
Suse Suse Linux Office Server *
Suse Suse Linux Firewall *
Suse Suse Linux 7, 8
Suse Suse Email Server 3, 3.1
Suse Suse Linux Connectivity Server *
Suse Suse Linux Database Server *
Gentoo Linux *

References

NameSourceURLTags
SUSE-SA:2004:020http://www.novell.com/linux/security/advisories/2004_20_kernel.htmlSUSE
linux-gain-privileges(16625)https://exchange.xforce.ibmcloud.com/vulnerabilities/16625XF