Mission and Overview
NVD is the U.S. government repository of standards based vulnerability management data. This data enables automation of vulnerability management, security measurement, and compliance (e.g. FISMA).
Resource Status
NVD contains:
CVE Vulnerabilities
56457
Checklists
221
US-CERT Alerts
246
US-CERT Vuln Notes
2721
OVAL Queries
8140
CPE Names
73311

Last updated: Sun May 26 01:52:00 EDT 2013

CVE Publication rate: 11.83

Email List

NVD provides four mailing lists to the public. For information and subscription instructions please visit NVD Mailing Lists

Workload Index

Vulnerability Workload Index: 6.21

About Us
NVD is a product of the NIST Computer Security Division and is sponsored by the Department of Homeland Security's National Cyber Security Division. It supports the U.S. government multi-agency (OSD, DHS, NSA, DISA, and NIST) Information Security Automation Program. It is the U.S. government content repository for the Security Content Automation Protocol (SCAP).

National Cyber Awareness System

Vulnerability Summary for CVE-2004-1235

Original release date:04/14/2005
Last revised:08/21/2010
Source: US-CERT/NIST

Overview

Race condition in the (1) load_elf_library and (2) binfmt_aout function calls for uselib in Linux kernel 2.4 through 2.429-rc2 and 2.6 through 2.6.10 allows local users to execute arbitrary code by manipulating the VMA descriptor.

Impact

CVSS Severity (version 2.0 incomplete approximation):
CVSS v2 Base Score:6.2 (MEDIUM) (AV:L/AC:H/Au:N/C:C/I:C/A:C) (legend)
Impact Subscore: 10.0
Exploitability Subscore: 1.9
CVSS Version 2 Metrics:
Access Vector: Locally exploitable
Access Complexity: High
Authentication: Not required to exploit
Impact Type:Provides administrator access, Allows complete confidentiality, integrity, and availability violation; Allows unauthorized disclosure of information; Allows disruption of service

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

External Source: BID
Name: 12190
Type: Advisory; Patch Information; Exploit
Hyperlink:http://www.securityfocus.com/bid/12190
External Source: REDHAT
Name: RHSA-2005:043
Type: Advisory; Patch Information
Hyperlink:http://www.redhat.com/support/errata/RHSA-2005-043.html
External Source: FEDORA
Name: FLSA:2336
Hyperlink:https://bugzilla.fedora.us/show_bug.cgi?id=2336
External Source: XF
Name: linux-uselib-gain-privileges(18800)
Hyperlink:http://xforce.iss.net/xforce/xfdb/18800
External Source: TRUSTIX
Name: 2005-0001
Hyperlink:http://www.trustix.org/errata/2005/0001/
External Source: FEDORA
Name: FEDORA-2005-013
Hyperlink:http://www.securityfocus.com/advisories/7806
External Source: FEDORA
Name: FEDORA-2005-014
Hyperlink:http://www.securityfocus.com/advisories/7805
External Source: CONFIRM
Name: http://www.securityfocus.com/advisories/7804
Hyperlink:http://www.securityfocus.com/advisories/7804
External Source: REDHAT
Name: RHSA-2005:092
Hyperlink:http://www.redhat.com/support/errata/RHSA-2005-092.html
External Source: OVAL
Name: oval:org.mitre.oval:def:9567
Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:9567
External Source: MISC
Name: http://isec.pl/vulnerabilities/isec-0021-uselib.txt
Hyperlink:http://isec.pl/vulnerabilities/isec-0021-uselib.txt
External Source: CONECTIVA
Name: CLA-2005:930
Hyperlink:http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=000930
External Source: REDHAT
Name: RHSA-2005:017
Hyperlink:http://www.redhat.com/support/errata/RHSA-2005-017.html
External Source: REDHAT
Name: RHSA-2005:016
Hyperlink:http://www.redhat.com/support/errata/RHSA-2005-016.html
External Source: SUSE
Name: SUSE-SR:2005:001
Hyperlink:http://www.novell.com/linux/security/advisories/2005_01_sr.html
External Source: MANDRAKE
Name: MDKSA-2005:022
Hyperlink:http://www.mandriva.com/security/advisories?name=MDKSA-2005:022
External Source: DEBIAN
Name: DSA-1082
Hyperlink:http://www.debian.org/security/2006/dsa-1082
External Source: DEBIAN
Name: DSA-1070
Hyperlink:http://www.debian.org/security/2006/dsa-1070
External Source: DEBIAN
Name: DSA-1069
Hyperlink:http://www.debian.org/security/2006/dsa-1069
External Source: DEBIAN
Name: DSA-1067
Hyperlink:http://www.debian.org/security/2006/dsa-1067
External Source: SECUNIA
Name: 20338
Hyperlink:http://secunia.com/advisories/20338
External Source: SECUNIA
Name: 20202
Hyperlink:http://secunia.com/advisories/20202
External Source: SECUNIA
Name: 20163
Hyperlink:http://secunia.com/advisories/20163
External Source: SECUNIA
Name: 20162
Hyperlink:http://secunia.com/advisories/20162
External Source: BUGTRAQ
Name: 20050107 Linux kernel sys_uselib local root vulnerability
Hyperlink:http://marc.theaimsgroup.com/?l=bugtraq&m=110512575901427&w=2

References to Check Content

Identifier:oval:org.mitre.oval:def:9567
Check System:http://oval.mitre.org/XMLSchema/oval-definitions-5
Hyperlink:http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:9567

Vulnerable software and versions

Nav control imageConfiguration 1
line trunkNav control imageOR
line trunkspacerNav control image* cpe:/a:avaya:mn100
line trunkspacerNav control image* cpe:/a:avaya:network_routing
line trunkspacerNav control image* cpe:/h:avaya:converged_communications_server:2.0
line trunkspacerNav control image* cpe:/h:avaya:s8710:r2.0.0
line trunkspacerNav control image* cpe:/h:avaya:s8710:r2.0.1
line trunkspacerNav control image* cpe:/o:avaya:modular_messaging_message_storage_server:1.1
line trunkspacerNav control image* cpe:/o:avaya:modular_messaging_message_storage_server:2.0
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.0
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.0:test1
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.0:test10
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.0:test11
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.0:test12
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.0:test2
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.0:test3
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.0:test4
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.0:test5
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.0:test6
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.0:test7
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.0:test8
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.0:test9
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.1
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.10
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.11
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.12
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.13
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.14
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.15
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.16
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.17
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.18
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.18::x86
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.18:pre1
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.18:pre2
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.18:pre3
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.18:pre4
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.18:pre5
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.18:pre6
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.18:pre7
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.18:pre8
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.19
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.19:pre1
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.19:pre2
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.19:pre3
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.19:pre4
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.19:pre5
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.19:pre6
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.2
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.20
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.21
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.21:pre1
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.21:pre4
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.21:pre7
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.22
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.23
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.23:pre9
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.23_ow2
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.24
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.24_ow1
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.25
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.26
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.27
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.27:pre1
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.27:pre2
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.27:pre3
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.27:pre4
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.27:pre5
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.28
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.29:rc2
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.3
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.4
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.5
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.6
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.7
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.8
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.4.9
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.0
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.0:test1
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.0:test10
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.0:test11
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.0:test2
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.0:test3
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.0:test4
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.0:test5
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.0:test6
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.0:test7
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.0:test8
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.0:test9
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.1
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.1:rc1
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.1:rc2
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.10
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.10:rc2
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.2
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.3
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.4
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.5
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.6
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.6:rc1
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.7
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.7:rc1
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.8
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.8:rc1
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.8:rc2
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.8:rc3
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6.9:2.6.20
line trunkspacerNav control image* cpe:/o:linux:linux_kernel:2.6_test9_cvs
line trunkspacerNav control image* cpe:/o:mandrakesoft:mandrake_linux:10.0
line trunkspacerNav control image* cpe:/o:mandrakesoft:mandrake_linux:10.0::amd64
line trunkspacerNav control image* cpe:/o:mandrakesoft:mandrake_linux:10.1
line trunkspacerNav control image* cpe:/o:mandrakesoft:mandrake_linux:10.1::x86_64
line trunkspacerNav control image* cpe:/o:mandrakesoft:mandrake_linux:9.2
line trunkspacerNav control image* cpe:/o:mandrakesoft:mandrake_linux:9.2::amd64
line trunkspacerNav control image* cpe:/o:mandrakesoft:mandrake_linux_corporate_server:2.1
line trunkspacerNav control image* cpe:/o:mandrakesoft:mandrake_linux_corporate_server:2.1::x86_64
line trunkspacerNav control image* cpe:/o:mandrakesoft:mandrake_linux_corporate_server:3.0
line trunkspacerNav control image* cpe:/o:redhat:enterprise_linux:3.0::advanced_servers
line trunkspacerNav control image* cpe:/o:redhat:enterprise_linux:3.0::enterprise_server
line trunkspacerNav control image* cpe:/o:redhat:enterprise_linux:3.0::workstation
line trunkspacerNav control image* cpe:/o:redhat:enterprise_linux:4.0::advanced_server
line trunkspacerNav control image* cpe:/o:redhat:enterprise_linux:4.0::enterprise_server
line trunkspacerNav control image* cpe:/o:redhat:enterprise_linux:4.0::workstation
line trunkspacerNav control image* cpe:/o:redhat:enterprise_linux_desktop:3.0
line trunkspacerNav control image* cpe:/o:redhat:enterprise_linux_desktop:4.0
line trunkspacerNav control image* cpe:/o:redhat:fedora_core:core_1.0
line trunkspacerNav control image* cpe:/o:redhat:fedora_core:core_2.0
line trunkspacerNav control image* cpe:/o:redhat:fedora_core:core_3.0
line trunkspacerNav control image* cpe:/o:redhat:linux:7.3::i386
line trunkspacerNav control image* cpe:/o:redhat:linux:9.0::i386
line trunkspacerNav control image* cpe:/o:suse:suse_linux:1.0::desktop
line trunkspacerNav control image* cpe:/o:suse:suse_linux:8.1
line trunkspacerNav control image* cpe:/o:suse:suse_linux:8.2
line trunkspacerNav control image* cpe:/o:suse:suse_linux:8::enterprise_server
line trunkspacerNav control image* cpe:/o:suse:suse_linux:9.0
line trunkspacerNav control image* cpe:/o:suse:suse_linux:9.0::enterprise_server
line trunkspacerNav control image* cpe:/o:suse:suse_linux:9.1
line trunkspacerNav control image* cpe:/o:suse:suse_linux:9.2
line trunkspacerNav control image* cpe:/o:ubuntu:ubuntu_linux:4.1::ia64
line trunkspacerNav control image* cpe:/o:ubuntu:ubuntu_linux:4.1::ppc
Nav control imageConfiguration 2
spacerNav control imageOR
spacerspacerNav control image* cpe:/a:avaya:intuity_audix:::lx
spacerspacerNav control image* cpe:/a:mandrakesoft:mandrake_multi_network_firewall:8.2
spacerspacerNav control image* cpe:/h:avaya:s8300:r2.0.0
spacerspacerNav control image* cpe:/h:avaya:s8300:r2.0.1
spacerspacerNav control image* cpe:/h:avaya:s8500:r2.0.0
spacerspacerNav control image* cpe:/h:avaya:s8500:r2.0.1
spacerspacerNav control image* cpe:/h:avaya:s8700:r2.0.0
spacerspacerNav control image* cpe:/h:avaya:s8700:r2.0.1
spacerspacerNav control image* cpe:/o:conectiva:linux:10.0
* Denotes Vulnerable Software
* Changes related to vulnerability configurations

Technical Details

Vulnerability Type (View All)
CVE Standard Vulnerability Entry:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1235