CVE-2003-1040

Published: Mar 23, 2004

Modified: Aug 8, 2024

PUBLISHED

Description

kmod in the Linux kernel does not set its uid, suid, gid, or sgid to 0, which allows local users to cause a denial of service (crash) by sending certain signals to kmod.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

SuSE-SA:2003:049

vendor-advisory

x_refsource_SUSE

linux-kmod-signals-dos(15577)

vdb-entry

x_refsource_XF

CLSA-2004:820

vendor-advisory

x_refsource_CONECTIVA

RHSA-2004:069

vendor-advisory

x_refsource_REDHAT

RHSA-2004:188

vendor-advisory

x_refsource_REDHAT

RHSA-2004:106

vendor-advisory

x_refsource_REDHAT

oval:org.mitre.oval:def:9423

vdb-entry

signature

x_refsource_OVAL

http://linux.bkbits.net:8080/linux-2.4/diffs/kernel/kmod.c%401.6?nav=index.html%7Csrc/%7Csrc/kernel%7Chist/kernel/kmod.c

x_refsource_CONFIRM

RHSA-2004:065

vendor-advisory

x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2003-1040

Description

Affected Products

References