CVE-2004-1068

Published Jan 10, 2005
Last updated 8 days ago
CVSS info 6.2
Overview

Description: A "missing serialization" error in the unix_dgram_recvmsg function in Linux 2.4.27 and earlier, and 2.6.x up to 2.6.9, allows local users to gain privileges via a race condition.
Source: cve@mitre.org
NVD status: Modified
Products: linux_kernel, enterprise_linux, enterprise_linux_desktop, linux_advanced_workstation, ubuntu_linux
Risk scores

CVSS 2.0

Type: Primary
Base score: 6.2
Impact score: 10
Exploitability score: 1.9
Vector string: AV:L/AC:H/Au:N/C:C/I:C/A:C
Weaknesses

nvd@nist.gov: NVD-CWE-Other
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "C24A129D-2E5E-436C-95DE-AE75D2E8D092",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.0:test1:*:*:*:*:*:*",
            "matchCriteriaId": "2E244C37-E366-482E-9173-9376D0839839",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.0:test10:*:*:*:*:*:*",
            "matchCriteriaId": "11F96BB9-6509-4F1E-9590-E55EE8C6F992",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.0:test11:*:*:*:*:*:*",
            "matchCriteriaId": "AFAEE304-B9D4-4F1E-A2E0-9E5A4932096D",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.0:test12:*:*:*:*:*:*",
            "matchCriteriaId": "12375EA9-EBFF-40B6-BCBC-E34BC3A6CDA3",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.0:test2:*:*:*:*:*:*",
            "matchCriteriaId": "718D4631-440E-4783-8966-B2A2D3EF89B3",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.0:test3:*:*:*:*:*:*",
            "matchCriteriaId": "6111EDDB-065F-4AD1-925C-E0A3C1DE26AE",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.0:test4:*:*:*:*:*:*",
            "matchCriteriaId": "A8A2F7E7-0C51-43F2-BCEA-01FF738971D6",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.0:test5:*:*:*:*:*:*",
            "matchCriteriaId": "40F5FFBB-05C8-4D65-9FCF-11E67BEE86AD",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.0:test6:*:*:*:*:*:*",
            "matchCriteriaId": "7015F57A-1E3B-42D2-9D12-F695078EFB21",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.0:test7:*:*:*:*:*:*",
            "matchCriteriaId": "467721EE-5130-46C5-BBB7-0F4878F3F171",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.0:test8:*:*:*:*:*:*",
            "matchCriteriaId": "171257E7-12C5-4283-88F7-FFE643995563",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.0:test9:*:*:*:*:*:*",
            "matchCriteriaId": "0887E02F-9F36-41F0-9F75-060B8414D7BF",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "55B85D5B-4EA1-4FCF-8D50-9C54E8FDA92F",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.2:*:*:*:*:*:*:*",
            "matchCriteriaId": "01408EC0-9C2D-4A44-8080-D7FC7E1A1FA1",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.3:*:*:*:*:*:*:*",
            "matchCriteriaId": "5F49A384-7222-41F3-9BE1-4E18C00E50A6",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.4:*:*:*:*:*:*:*",
            "matchCriteriaId": "05520FE3-C48D-42E8-BC24-C2396BD46CBA",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.5:*:*:*:*:*:*:*",
            "matchCriteriaId": "D865FBB6-E07D-492F-A75E-168B06C8ADEE",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.6:*:*:*:*:*:*:*",
            "matchCriteriaId": "598F24C2-0366-4799-865C-5EE4572B734B",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.7:*:*:*:*:*:*:*",
            "matchCriteriaId": "D0399660-6385-45AB-9785-E504D8788146",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.8:*:*:*:*:*:*:*",
            "matchCriteriaId": "DCBC50EA-130C-41B7-83EA-C523B3C3AAD7",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.9:*:*:*:*:*:*:*",
            "matchCriteriaId": "B91F6CBE-400F-4D0B-B893-34577B47A342",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.10:*:*:*:*:*:*:*",
            "matchCriteriaId": "1548ECFD-FCB5-4AE0-9788-42F61F25489F",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.12:*:*:*:*:*:*:*",
            "matchCriteriaId": "615F6BA2-CD51-4159-B28A-A018CA9FC25C",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.13:*:*:*:*:*:*:*",
            "matchCriteriaId": "093848CB-68A1-4258-8357-373A477FE4E2",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.14:*:*:*:*:*:*:*",
            "matchCriteriaId": "E275F440-A427-465F-B314-BF0730C781DB",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.15:*:*:*:*:*:*:*",
            "matchCriteriaId": "98651D39-60CF-409F-8276-DBBB56B972AA",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.16:*:*:*:*:*:*:*",
            "matchCriteriaId": "067B8E09-C923-4DDA-92DB-4A2892CB526A",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.17:*:*:*:*:*:*:*",
            "matchCriteriaId": "9EBE3738-E530-4EC6-9FC6-1A063605BE05",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.18:*:*:*:*:*:*:*",
            "matchCriteriaId": "474384F1-FB2D-4C00-A4CD-0C2C5AE42DB4",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.18:*:x86:*:*:*:*:*",
            "matchCriteriaId": "D77F8919-4064-4EA5-A948-76178EA21F83",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.18:pre1:*:*:*:*:*:*",
            "matchCriteriaId": "5E7C423D-23DE-4C7B-A518-66F87E041925",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.18:pre2:*:*:*:*:*:*",
            "matchCriteriaId": "8EA1382E-71B0-4E65-A310-716A244F4FB1",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.18:pre3:*:*:*:*:*:*",
            "matchCriteriaId": "AC955BD8-3ABB-4FDB-B37E-B1F0C47A5E0D",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.18:pre4:*:*:*:*:*:*",
            "matchCriteriaId": "2EBCA878-CCD0-4645-ACF6-12FB9C4B4A4D",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.18:pre5:*:*:*:*:*:*",
            "matchCriteriaId": "B4BEF62D-2BEF-4CF8-9559-8A6D9631B0EC",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.18:pre6:*:*:*:*:*:*",
            "matchCriteriaId": "824BBD31-8F3B-4F05-981B-ABF662BBF5F2",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.18:pre7:*:*:*:*:*:*",
            "matchCriteriaId": "10F4CCC2-8AE5-4CFF-8DC4-126F02126E1F",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.18:pre8:*:*:*:*:*:*",
            "matchCriteriaId": "388A5C99-1F60-4C20-9AE5-6E73E5A3F819",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.19:*:*:*:*:*:*:*",
            "matchCriteriaId": "F677E992-8D37-438F-97DF-9D98B28F020C",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.19:pre1:*:*:*:*:*:*",
            "matchCriteriaId": "5888F8D7-15C2-4435-BB3C-8674DFAF0089",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.19:pre2:*:*:*:*:*:*",
            "matchCriteriaId": "29439AD0-EB8D-4675-A77A-6548FF27ADA3",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.19:pre3:*:*:*:*:*:*",
            "matchCriteriaId": "F27AADF6-1605-47FC-8C4D-87827A578A90",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.19:pre4:*:*:*:*:*:*",
            "matchCriteriaId": "B42F4080-A76F-4D17-85E2-CD2D2E4D0450",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.19:pre5:*:*:*:*:*:*",
            "matchCriteriaId": "6968EF1D-7CC5-430D-866D-206F66486F63",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.19:pre6:*:*:*:*:*:*",
            "matchCriteriaId": "50E6F5C5-BF74-4C10-830A-F232D528D290",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.20:*:*:*:*:*:*:*",
            "matchCriteriaId": "476687F9-722B-490C-BD0B-B5F2CD7891DC",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.21:*:*:*:*:*:*:*",
            "matchCriteriaId": "A399D94B-D08D-4454-A07A-6634C9AE612F",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.21:pre1:*:*:*:*:*:*",
            "matchCriteriaId": "8EEBFBB4-CC06-40D2-8DE9-22E82DBEFADA",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.21:pre4:*:*:*:*:*:*",
            "matchCriteriaId": "DCD8E4AE-FEF7-4CE2-B338-4F766921593F",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.21:pre7:*:*:*:*:*:*",
            "matchCriteriaId": "13A8B50A-73F6-4FCF-A81F-FB624FBA7143",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.22:*:*:*:*:*:*:*",
            "matchCriteriaId": "9336ABDF-9928-49F6-BAA7-D6E9829F9B1F",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.23:*:*:*:*:*:*:*",
            "matchCriteriaId": "BB45C3B2-0F5D-4AE2-AE00-E1D6501E8D92",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.23:pre9:*:*:*:*:*:*",
            "matchCriteriaId": "8D27D843-2DA7-4481-857C-09FDC4FBD45C",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.23_ow2:*:*:*:*:*:*:*",
            "matchCriteriaId": "BCB93128-2743-4668-8C48-9B7282D4A672",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.24:*:*:*:*:*:*:*",
            "matchCriteriaId": "040991B8-FB4B-480B-B53B-AA7A884F9F19",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.24_ow1:*:*:*:*:*:*:*",
            "matchCriteriaId": "BFA592BC-5846-4FC1-B2A7-13E622705DA8",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.25:*:*:*:*:*:*:*",
            "matchCriteriaId": "59688C40-C92F-431E-ADD7-6782622862D3",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.26:*:*:*:*:*:*:*",
            "matchCriteriaId": "D813900D-DCF3-4F5D-9D90-13EDE2CBB3DA",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.27:*:*:*:*:*:*:*",
            "matchCriteriaId": "6E4C7831-0296-4DFA-A4E9-F7B6B30FFB72",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.27:pre1:*:*:*:*:*:*",
            "matchCriteriaId": "C5FE15BF-91C7-452A-BE1B-7EC9632421C2",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.27:pre2:*:*:*:*:*:*",
            "matchCriteriaId": "15C1923C-D9C4-400D-9F0F-20B519EEC9C0",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.27:pre3:*:*:*:*:*:*",
            "matchCriteriaId": "E51913F9-FC7D-450A-9A82-5084AA74A5B2",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.27:pre4:*:*:*:*:*:*",
            "matchCriteriaId": "B62E02D5-9EEE-439B-A510-BEEE28A9F358",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.4.27:pre5:*:*:*:*:*:*",
            "matchCriteriaId": "02278C07-E649-427D-9E5C-F1738A01BCBD",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:advanced_server:*:*:*:*:*",
            "matchCriteriaId": "2641EE56-6F9D-400B-B456-877F4DA79B10",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:advanced_server_ia64:*:*:*:*:*",
            "matchCriteriaId": "A4A9461E-C117-42EC-9F14-DF2A82BA7C5D",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:enterprise_server:*:*:*:*:*",
            "matchCriteriaId": "E0B458EA-495E-40FA-9379-C03757F7B1EE",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:enterprise_server_ia64:*:*:*:*:*",
            "matchCriteriaId": "409E324A-C040-494F-A026-9DCAE01C07F8",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:workstation:*:*:*:*:*",
            "matchCriteriaId": "1728AB5D-55A9-46B0-A412-6F7263CAEB5A",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:workstation_ia64:*:*:*:*:*",
            "matchCriteriaId": "6474B775-C893-491F-A074-802AFB1FEDD8",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:3.0:*:advanced_server:*:*:*:*:*",
            "matchCriteriaId": "78B46FFA-5B09-473E-AD33-3DB18BD0DAFE",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:3.0:*:enterprise_server:*:*:*:*:*",
            "matchCriteriaId": "EC79FF22-2664-4C40-B0B3-6D23B5F45162",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:3.0:*:workstation_server:*:*:*:*:*",
            "matchCriteriaId": "0EFE2E73-9536-41A9-B83B-0A06B54857F4",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:3.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "AF3BBBC3-3EF9-4E24-9DE2-627E172A5473",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:redhat:linux_advanced_workstation:2.1:*:ia64:*:*:*:*:*",
            "matchCriteriaId": "84A50ED3-FD0D-4038-B3E7-CC65D166C968",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:redhat:linux_advanced_workstation:2.1:*:itanium_processor:*:*:*:*:*",
            "matchCriteriaId": "777F9EC0-2919-45CA-BFF8-78A02537C513",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:ubuntu:ubuntu_linux:4.1:*:ia64:*:*:*:*:*",
            "matchCriteriaId": "6E94583A-5184-462E-9FC4-57B35DA06DA7",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:ubuntu:ubuntu_linux:4.1:*:ppc:*:*:*:*:*",
            "matchCriteriaId": "E905FAAD-37B6-4DD0-A752-2974F8336273",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  }
]
References

Sources include official advisories and independent security research.
Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

Related CVEs

References
