Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

CVE-2003-0985

Disclosure Date: January 20, 2004
CVE-2003-0985
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

The mremap system call (do_mremap) in Linux kernel 2.4.x before 2.4.21, and possibly other versions before 2.4.24, does not properly perform bounds checks, which allows local users to cause a denial of service and possibly gain privileges by causing a remapping of a virtual memory area (VMA) to create a zero length VMA, a different vulnerability than CAN-2004-0077.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics
Base Score:
None
Impact Score:
Unknown
Exploitability Score:
Unknown
Vector:
Unknown
Attack Vector (AV):
Unknown
Attack Complexity (AC):
Unknown
Privileges Required (PR):
Unknown
User Interaction (UI):
Unknown
Scope (S):
Unknown
Confidentiality (C):
Unknown
Integrity (I):
Unknown
Availability (A):
Unknown

General Information

Offensive Application
Unknown
Utility Class
Unknown
Ports
Unknown
OS
Unknown
Vulnerable Versions
n/a
Prerequisites
Unknown
Discovered By
Unknown
PoC Author
Unknown
Metasploit Module
Unknown
Reporter
Unknown

Vendors

  • linux

Products

  • linux kernel 2.4.0,
  • linux kernel 2.4.1,
  • linux kernel 2.4.10,
  • linux kernel 2.4.11,
  • linux kernel 2.4.12,
  • linux kernel 2.4.13,
  • linux kernel 2.4.14,
  • linux kernel 2.4.15,
  • linux kernel 2.4.16,
  • linux kernel 2.4.17,
  • linux kernel 2.4.18,
  • linux kernel 2.4.19,
  • linux kernel 2.4.2,
  • linux kernel 2.4.20,
  • linux kernel 2.4.21,
  • linux kernel 2.4.22,
  • linux kernel 2.4.23,
  • linux kernel 2.4.3,
  • linux kernel 2.4.4,
  • linux kernel 2.4.5,
  • linux kernel 2.4.6,
  • linux kernel 2.4.7,
  • linux kernel 2.4.8,
  • linux kernel 2.4.9

References

Canonical
CVE-2003-0985 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0985)
BID-9356 (http://www.securityfocus.com/bid/9356)
Advisory
SECUNIA-20163 (http://secunia.com/advisories/20163)
DSA-1082 (http://www.debian.org/security/2006/dsa-1082)
DSA-423 (http://www.debian.org/security/2004/dsa-423)
http://www.redhat.com/support/errata/RHSA-2003-417.html
DSA-450 (http://www.debian.org/security/2004/dsa-450)
DSA-1070 (http://www.debian.org/security/2006/dsa-1070)
DSA-440 (http://www.debian.org/security/2004/dsa-440)
20040112 SmoothWall Project Security Advisory SWP-2004:001 (http://marc.info?l=bugtraq&m=107394143105081&w=2)
DSA-439 (http://www.debian.org/security/2004/dsa-439)
DSA-1067 (http://www.debian.org/security/2006/dsa-1067)
DSA-475 (http://www.debian.org/security/2004/dsa-475)
DSA-1069 (http://www.debian.org/security/2006/dsa-1069)
DSA-417 (http://www.debian.org/security/2004/dsa-417)
DSA-442 (http://www.debian.org/security/2004/dsa-442)
SECUNIA-20202 (http://secunia.com/advisories/20202)
DSA-470 (http://www.debian.org/security/2004/dsa-470)
SECUNIA-20338 (http://secunia.com/advisories/20338)
http://www.redhat.com/support/errata/RHSA-2003-416.html
XF-linux-domremap-gain-privileges(14135) (https://exchange.xforce.ibmcloud.com/vulnerabilities/14135)
http://klecker.debian.org/~joey/security/kernel/patches/patch.CAN-2005-0528.mremap
DSA-413 (http://www.debian.org/security/2004/dsa-413)
20040105 Linux kernel do_mremap() proof-of-concept exploit code (http://marc.info?l=bugtraq&m=107340358402129&w=2)
20040107 [slackware-security] Kernel security update (SSA:2004-006-01) (http://marc.info?l=bugtraq&m=107350348418373&w=2)
20040106 Linux mremap bug correction (http://marc.info?l=bugtraq&m=107340814409017&w=2)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A860
20040108 [slackware-security] Slackware 8.1 kernel security update (SSA:2004-008-01) (http://archives.neohapsis.com/archives/bugtraq/2004-01/0070.html)
OSVDB-3315 (http://www.osvdb.org/3315)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A867
http://www.kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.24
http://svn.debian.org/wsvn/kernel/patch-tracking/CVE-2005-0528?op=file&rev=0&sc=0
20040105 Linux kernel mremap vulnerability (http://marc.info?l=bugtraq&m=107332782121916&w=2)
DSA-427 (http://www.debian.org/security/2004/dsa-427)
http://www.redhat.com/support/errata/RHSA-2003-418.html
http://www.redhat.com/support/errata/RHSA-2003-419.html
http://www.novell.com/linux/security/advisories/2004_03_linux_kernel.html
SECUNIA-10532 (http://secunia.com/advisories/10532)
VU#490620 (http://www.kb.cert.org/vuls/id/490620)
Miscellaneous
http://distro.conectiva.com.br/atualizacoes?id=a&anuncio=000799
ESA-20040105-001 (http://www.linuxsecurity.com/advisories/engarde_advisory-3904.html)
IMNX-2004-73-001-01 (http://download.immunix.org/ImmunixOS/7.3/updates/IMNX-2004-73-001-01)
2004-0001 (http://marc.info?l=bugtraq&m=107332754521495&w=2)
http://isec.pl/vulnerabilities/isec-0013-mremap.txt
O-045 (http://www.ciac.org/ciac/bulletins/o-045.shtml)
http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:001

Additional Info

Authenticated
Unknown
Exploitable
Unknown
Reliability
Unknown
Stability
Unknown
Available Mitigations
Unknown
Shelf Life
Unknown
Userbase/Installbase
Unknown
Patch Effectiveness
Unknown
Technical Analysis