Security features in Linux kernel - CVE-2005-4351
Published: December 31, 2005 / Updated: July 20, 2017
Vulnerability identifier: #VU99914
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2005-4351
CWE-ID: CWE-254
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vendor: Linux Foundation
Affected software:
Linux kernel
Linux kernel
Detailed vulnerability description
The vulnerability allows a local user to read and manipulate data.
The securelevels implementation in FreeBSD 7.0 and earlier, OpenBSD up to 3.8, DragonFly up to 1.2, and Linux up to 2.6.15 allows root users to bypass immutable settings for files by mounting another filesystem that masks the immutable files while the system is running.
How to mitigate CVE-2005-4351
Install update from vendor's repository.
Sources
- http://archives.neohapsis.com/archives/openbsd/2005-10/1523.html
- http://lists.grok.org.uk/pipermail/full-disclosure/2006-January/041177.html
- http://www.redteam-pentesting.de/advisories/rt-sa-2005-015.txt
- http://www.redteam-pentesting.de/advisories/rt-sa-2005-15.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24037