Security restrictions bypass in Linux kernel - CVE-2005-0204
Published: May 2, 2005 / Updated: October 11, 2017
Vulnerability identifier: #VU99929
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2005-0204
CWE-ID: CWE-264
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vendor: Linux Foundation
Affected software:
Linux kernel
Linux kernel
Detailed vulnerability description
The vulnerability allows a local user to corrupt data.
Linux kernel before 2.6.9, when running on the AMD64 and Intel EM64T architectures, allows local users to write to privileged IO ports via the OUTS instruction.
How to mitigate CVE-2005-0204
Install update from vendor's repository.
Sources
- http://secunia.com/advisories/18784
- http://www.redhat.com/support/errata/RHSA-2005-092.html
- http://www.redhat.com/support/errata/RHSA-2005-293.html
- http://www.securityfocus.com/bid/12598
- http://www.trustix.org/errata/2006/0006
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10320