CVE-2005-1263 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2005-1263
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2005-1263

Description: The elf_core_dump function in binfmt_elf.c for Linux kernel 2.x.x to 2.2.27-rc2, 2.4.x to 2.4.31-pre1, and 2.6.x to 2.6.12-rc4 allows local users to execute arbitrary code via an ELF binary that, in certain conditions involving the create_elf_tables function, causes a negative length argument to pass a signed integer comparison, leading to a buffer overflow.

CVE Status: Candidate

References: SGI SAID Secunia Advisory: SA19185 Secunia Advisory: SA19607 REDHAT http://www.redhat.com/support/errata/RHSA-2005-551.html http://www.redhat.com/support/errata/RHSA-2005-529.html http://www.redhat.com/support/errata/RHSA-2005-472.html OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1122 MISC http://www.isec.pl/vulnerabilities/isec-0023-coredump.txt FEDORA http://www.securityfocus.com/archive/1/archive/1/427980/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/428058/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/428028/100/0/threaded BUGTRAQ http://www.securityfocus.com/archive/1/397966 BID 13589

Return to the previous page.