CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 2CVE-2005-3257 – Linux Kernel 2.6 - Console Keymap Local Command Injection
https://notcve.org/view.php?id=CVE-2005-3257
18 Oct 2005 — The VT implementation (vt_ioctl.c) in Linux kernel 2.6.12, and possibly other versions including 2.6.14.4, allows local users to use the KDSKBSENT ioctl on terminals of other users and gain privileges, as demonstrated by modifying key bindings using loadkeys. • https://www.exploit-db.com/exploits/26353 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0CVE-2005-3180
https://notcve.org/view.php?id=CVE-2005-3180
11 Oct 2005 — The Orinoco driver (orinoco.c) in Linux kernel 2.6.13 and earlier does not properly clear memory from a previously used packet whose length is increased, which allows remote attackers to obtain sensitive information. • http://marc.info/?l=bugtraq&m=112914754708402&w=2 •
CVSS: 5.5EPSS: 0%CPEs: 22EXPL: 0CVE-2005-3179
https://notcve.org/view.php?id=CVE-2005-3179
11 Oct 2005 — drm.c in Linux kernel 2.6.10 to 2.6.13 creates a debug file in sysfs with world-readable and world-writable permissions, which allows local users to enable DRM debugging and obtain sensitive information. • http://bugs.gentoo.org/show_bug.cgi?id=107893 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0CVE-2005-3181
https://notcve.org/view.php?id=CVE-2005-3181
11 Oct 2005 — The audit system in Linux kernel 2.6.6, and other versions before 2.6.13.4, when CONFIG_AUDITSYSCALL is enabled, uses an incorrect function to free names_cache memory, which prevents the memory from being tracked by AUDITSYSCALL code and leads to a memory leak that allows attackers to cause a denial of service (memory consumption). • http://kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=829841146878e082613a49581ae252c071057c23 • CWE-401: Missing Release of Memory after Effective Lifetime •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2005-3119
https://notcve.org/view.php?id=CVE-2005-3119
11 Oct 2005 — Memory leak in the request_key_auth_destroy function in request_key_auth in Linux kernel 2.6.10 up to 2.6.13 allows local users to cause a denial of service (memory consumption) via a large number of authorization token keys. • http://linux.bkbits.net:8080/linux-2.6/cset%4043483fddCiQX1WyG_orbko06TrjMVA • CWE-401: Missing Release of Memory after Effective Lifetime •
CVSS: 5.5EPSS: 0%CPEs: 34EXPL: 0CVE-2005-3055
https://notcve.org/view.php?id=CVE-2005-3055
26 Sep 2005 — Linux kernel 2.6.8 to 2.6.14-rc2 allows local users to cause a denial of service (kernel OOPS) via a userspace process that issues a USB Request Block (URB) to a USB device and terminates before the URB is finished, which leads to a stale pointer reference. • http://marc.info/?l=linux-kernel&m=112766129313883 • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 66EXPL: 0CVE-2005-3044
https://notcve.org/view.php?id=CVE-2005-3044
22 Sep 2005 — Multiple vulnerabilities in Linux kernel before 2.6.13.2 allow local users to cause a denial of service (kernel OOPS from null dereference) via (1) fput in a 32-bit ioctl on 64-bit x86 systems or (2) sockfd_put in the 32-bit routing_ioctl function on 64-bit systems. • http://kernel.org/git/?p=linux/kernel/git/aegl/linux-2.6.git%3Ba=commitdiff%3Bh=35311d6478077f7bfe35c1c653193e658bf32686 •
CVSS: 7.8EPSS: 0%CPEs: 42EXPL: 0CVE-2005-2490
https://notcve.org/view.php?id=CVE-2005-2490
14 Sep 2005 — Stack-based buffer overflow in the sendmsg function call in the Linux kernel 2.6 before 2.6.13.1 allows local users to execute arbitrary code by calling sendmsg and modifying the message contents in another thread. • http://marc.info/?l=bugtraq&m=112690609622266&w=2 •
CVSS: 5.5EPSS: 0%CPEs: 42EXPL: 0CVE-2005-1913
https://notcve.org/view.php?id=CVE-2005-1913
14 Sep 2005 — The Linux kernel 2.6 before 2.6.12.1 allows local users to cause a denial of service (kernel panic) via a non group-leader thread executing a different program than was pending in itimer, which causes the signal to be delivered to the old group-leader task, which does not exist. • http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.12.1 •
CVSS: 5.5EPSS: 0%CPEs: 45EXPL: 0CVE-2005-2492
https://notcve.org/view.php?id=CVE-2005-2492
14 Sep 2005 — The raw_sendmsg function in the Linux kernel 2.6 before 2.6.13.1 allows local users to cause a denial of service (change hardware state) or read from arbitrary memory via crafted input. • http://marc.info/?l=bugtraq&m=112690609622266&w=2 • CWE-264: Permissions, Privileges, and Access Controls •