>> Linux Kernel "binfmt_elf" Core Dump Buffer Overflow Vulnerability
Title : Linux Kernel "binfmt_elf" Core Dump Buffer Overflow Vulnerability VUPEN ID : VUPEN/ADV-2005-0524 CVE ID : CVE-2005-1263 CWE ID : CWE-
Rated as : Moderate Risk
Remotely Exploitable : No Locally Exploitable : Yes Release Date : 2005-05-11
Technical Description
A new vulnerability was identified in Linux Kernel, which may be exploited by malicious local attackers to obtain elevated privileges or cause a denial of service. This flaw is due to a stack overflow error in the "elf_core_dump()" function [fs/binfmt_elf.c] that does not properly handle a negative "len" value, which may be exploited by local unprivileged users to cause a DoS or execute arbitrary commands with "root" privileges.
Subscribe to VUPEN VNS and receive real-time e-mail and SMS alerts when new advisories or patches relevant to your systems and network configurations are available.
Feedback If you have additional information or corrections for this security advisory please submit them via our contact form.
