Main Vulnerability Database Vulnerabilities #VU99938

Security restrictions bypass in Linux kernel - CVE-2004-0887

Published: January 27, 2005 / Updated: July 11, 2017

Vulnerability identifier: #VU99938

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2004-0887

CWE-ID: CWE-264

Exploitation vector: Local access

Exploit availability: No public exploit available

Vendor: Linux Foundation

Affected software:
Linux kernel

Detailed vulnerability description

The vulnerability allows a local user to execute arbitrary code.

SUSE Linux Enterprise Server 9 on the S/390 platform does not properly handle a certain privileged instruction, which allows local users to gain root privileges.

How to mitigate CVE-2004-0887

Install update from vendor's repository.

Sources

http://secunia.com/advisories/19369
http://www.debian.org/security/2006/dsa-1018
http://www.novell.com/linux/security/advisories/2004_37_kernel.html
http://www.securityfocus.com/bid/11489
https://exchange.xforce.ibmcloud.com/vulnerabilities/17801

Security restrictions bypass in Linux kernel - CVE-2004-0887

Detailed vulnerability description

How to mitigate CVE-2004-0887

Sources

Please verify you're human