CVE-2003-0476 - CVE Reference - Advisories

CVE Reference: CVE-2003-0476

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2003-0476

Description: The execve system call in Linux 2.4.x records the file descriptor of the executable process in the file table of the calling process, which allows local users to gain read access to restricted file descriptors.

CVE Status: Candidate

References: SUSE REDHAT http://www.redhat.com/support/errata/RHSA-2003-408.html http://www.redhat.com/support/errata/RHSA-2003-238.html http://www.redhat.com/support/errata/RHSA-2003-368.html OVAL http://oval.mitre.org/oval/definitions/data/oval327.html MANDRAKE http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:074 DEBIAN http://www.debian.org/security/2004/dsa-423 http://www.debian.org/security/2004/dsa-358 BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=105664924024009&w=2

Return to the previous page.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	Novell eDirectory Multiple Vulnerabilities

2.	dotProject SQL Injection and Cross-Site Scripting

3.	phpBB BBcode Script Insertion Vulnerability

4.	Blogn Cross-Site Scripting and Cross-Site Request Forgery

5.	HP TCP/IP Services for OpenVMS Finger Format String Vulnerability

6.	geo-* Insecure Temporary Files

7.	Adium MSN SLP Message Integer Overflow Vulnerabilities

8.	Acoustica Mixcraft ".mx4" File Processing Buffer Overflow

9.	GpsDrive "geo-code" Insecure Temporary Files

10.	phpJobScheduler "installed_conf ig_file" File Inclusion Vulnerabilities