CVE-2004-0496 - OpenCVE

Multiple unknown vulnerabilities in Linux kernel 2.6 allow local users to gain privileges or access kernel memory, a different set of vulnerabilities than those identified in CVE-2004-0495, as found by the Sparse source code checking tool.

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:L/AC:L/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Suse	Suse Linux Connectivity Server Suse Email Server Suse Linux Suse Linux Database Server Suse Linux Firewall Suse Linux Office Server
Mandrakesoft	Mandrake Multi Network Firewall Mandrake Linux Mandrake Linux Corporate Server
Sun	Sunos Solaris
Linux	Linux Kernel
Gentoo	Linux

Configuration 1 [-]

OR	cpe:2.3:a:mandrakesoft:mandrake_multi_network_firewall:8.2:::::::*
	cpe:2.3:a:suse:suse_email_server:3:::::::*
	cpe:2.3:a:suse:suse_email_server:3.1:::::::*
	cpe:2.3:a:suse:suse_linux_connectivity_server::::::::
	cpe:2.3:a:suse:suse_linux_database_server::::::::
	cpe:2.3:a:suse:suse_linux_firewall::::::::
	cpe:2.3:a:suse:suse_linux_office_server::::::::

Configuration 2 [-]

OR	cpe:2.3:o:gentoo:linux::::::::
	cpe:2.3:o:linux:linux_kernel:2.6.0:::::::*
	cpe:2.3:o:mandrakesoft:mandrake_linux:9.1:::::::*
	cpe:2.3:o:mandrakesoft:mandrake_linux:9.2:::::::*
	cpe:2.3:o:mandrakesoft:mandrake_linux:10.0:::::::*
	cpe:2.3:o:mandrakesoft:mandrake_linux_corporate_server:2.1:::::::*
	cpe:2.3:o:sun:solaris:9.0::sparc:::::
	cpe:2.3:o:sun:sunos:5.8:::::::*
	cpe:2.3:o:sun:sunos:5.9:::::::*
	cpe:2.3:o:suse:suse_linux:7::enterprise_server:::::
	cpe:2.3:o:suse:suse_linux:8::enterprise_server:::::

References

Link	Resource
http://www.novell.com/linux/security/advisories/2004_20_kernel.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/16625

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2004-07-06T04:00:00

Updated: 2017-07-10T14:57:01

Reserved: 2004-05-27T00:00:00

Link: CVE-2004-0496

JSON object: View

NVD Information

Status : Modified

Published: 2004-12-06T05:00:00.000

Modified: 2018-10-30T16:26:23.107

Link: CVE-2004-0496

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-Other

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2004-07-02T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple unknown vulnerabilities in Linux kernel 2.6 allow local users to gain privileges or access kernel memory, a different set of vulnerabilities than those identified in CVE-2004-0495, as found by the Sparse source code checking tool."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-10T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "linux-gain-privileges(16625)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16625"}, {"name": "SUSE-SA:2004:020", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://www.novell.com/linux/security/advisories/2004_20_kernel.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2004-0496", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple unknown vulnerabilities in Linux kernel 2.6 allow local users to gain privileges or access kernel memory, a different set of vulnerabilities than those identified in CVE-2004-0495, as found by the Sparse source code checking tool."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "linux-gain-privileges(16625)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16625"}, {"name": "SUSE-SA:2004:020", "refsource": "SUSE", "url": "http://www.novell.com/linux/security/advisories/2004_20_kernel.html"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2004-0496", "datePublished": "2004-07-06T04:00:00", "dateReserved": "2004-05-27T00:00:00", "dateUpdated": "2017-07-10T14:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:mandrakesoft:mandrake_multi_network_firewall:8.2:*:*:*:*:*:*:*", "matchCriteriaId": "E4F3F3BB-E004-4FD9-9580-F2D5F3ED3701", "vulnerable": true}, {"criteria": "cpe:2.3:a:suse:suse_email_server:3:*:*:*:*:*:*:*", "matchCriteriaId": "62E7BDA1-AFB2-45D4-B80C-30F4FF1DF219", "vulnerable": true}, {"criteria": "cpe:2.3:a:suse:suse_email_server:3.1:*:*:*:*:*:*:*", "matchCriteriaId": "A451599B-5F4F-4D7F-B5EF-3AE9F9B89D62", "vulnerable": true}, {"criteria": "cpe:2.3:a:suse:suse_linux_connectivity_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "941DFF67-E9F6-41F0-A5CB-90105733327D", "vulnerable": true}, {"criteria": "cpe:2.3:a:suse:suse_linux_database_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "117BBA08-9C1B-4CAC-A418-B044D69C27D1", "vulnerable": true}, {"criteria": "cpe:2.3:a:suse:suse_linux_firewall:*:*:*:*:*:*:*:*", "matchCriteriaId": "EEBE1A76-D59D-47C1-8B12-4582FAE888DA", "vulnerable": true}, {"criteria": "cpe:2.3:a:suse:suse_linux_office_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "2FDDFB81-4DFE-416A-BCE1-ED96AC3E69B5", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:gentoo:linux:*:*:*:*:*:*:*:*", "matchCriteriaId": "647BA336-5538-4972-9271-383A0EC9378E", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.0:*:*:*:*:*:*:*", "matchCriteriaId": "142BCD48-8387-4D0C-A052-44DD4144CBFF", "vulnerable": true}, {"criteria": "cpe:2.3:o:mandrakesoft:mandrake_linux:9.1:*:*:*:*:*:*:*", "matchCriteriaId": "C4AD30B9-8FBA-48B3-B2B2-014C950B9BAA", "vulnerable": true}, {"criteria": "cpe:2.3:o:mandrakesoft:mandrake_linux:9.2:*:*:*:*:*:*:*", "matchCriteriaId": "4177C378-7729-46AB-B49B-C6DAED3200E7", "vulnerable": true}, {"criteria": "cpe:2.3:o:mandrakesoft:mandrake_linux:10.0:*:*:*:*:*:*:*", "matchCriteriaId": "A06E5CD0-8BEC-4F4C-9E11-1FEE0563946C", "vulnerable": true}, {"criteria": "cpe:2.3:o:mandrakesoft:mandrake_linux_corporate_server:2.1:*:*:*:*:*:*:*", "matchCriteriaId": "E0F0D201-B1DC-4024-AF77-A284673618F3", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:solaris:9.0:*:sparc:*:*:*:*:*", "matchCriteriaId": "A711CDC2-412C-499D-9FA6-7F25B06267C6", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:sunos:5.8:*:*:*:*:*:*:*", "matchCriteriaId": "A2475113-CFE4-41C8-A86F-F2DA6548D224", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:sunos:5.9:*:*:*:*:*:*:*", "matchCriteriaId": "A1E585DC-FC74-4BB0-96B7-C00B6DB610DF", "vulnerable": true}, {"criteria": "cpe:2.3:o:suse:suse_linux:7:*:enterprise_server:*:*:*:*:*", "matchCriteriaId": "F7840155-DCF0-4C34-815B-71F872D31A20", "vulnerable": true}, {"criteria": "cpe:2.3:o:suse:suse_linux:8:*:enterprise_server:*:*:*:*:*", "matchCriteriaId": "D2E2EF3C-1379-4CBE-8FF5-DACD47834651", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Multiple unknown vulnerabilities in Linux kernel 2.6 allow local users to gain privileges or access kernel memory, a different set of vulnerabilities than those identified in CVE-2004-0495, as found by the Sparse source code checking tool."}, {"lang": "es", "value": "Multiples vulnerabilidades desconocidas en el kernel 2.6 de Linux permite a usuarios locales ganar privilegios o acceder a memoria del kernel, un grupo de vulerabilidades distinto de los identificado por CAN-2004-0495, como se ha encontrado con la herramienta de comprobaci\u00f3n de c\u00f3digo fuente Sparse"}], "id": "CVE-2004-0496", "lastModified": "2018-10-30T16:26:23.107", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2004-12-06T05:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://www.novell.com/linux/security/advisories/2004_20_kernel.html"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16625"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}