CVE-2006-6304 — Vulnetix

Try Vulnetix Request Demo

CVE-2006-6304 PUBLISHED

Reported by mitre · Published December 14, 2006

The do_coredump function in fs/exec.c in the Linux kernel 2.6.19 sets the flag variable to O_EXCL but does not use it, which allows context-dependent attackers to modify arbitrary files via a rewrite attack during a core dump.

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
n/a	n/a	n/a, n/a

Timeline

Dec 14, 2006 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
May 19, 2023 EPSS Score
Jul 10, 2023 EPSS Score
Aug 31, 2023 EPSS Score

References

21591 vdb-entryx_refsource_BID
oval:org.mitre.oval:def:7446 vdb-entrysignaturex_refsource_OVAL
x_refsource_CONFIRM
23349 third-party-advisoryx_refsource_SECUNIA
x_refsource_CONFIRM
oval:org.mitre.oval:def:10797 vdb-entrysignaturex_refsource_OVAL
RHSA-2010:0095 vendor-advisoryx_refsource_REDHAT
ADV-2006-5002 vdb-entryx_refsource_VUPEN
RHSA-2010:0046 vendor-advisoryx_refsource_REDHAT
2006-0074 vendor-advisoryx_refsource_TRUSTIX

Open in Interactive Console →