CVE-2005-4351
Severity Score
4.3
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
2
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The securelevels implementation in FreeBSD 7.0 and earlier, OpenBSD up to 3.8, DragonFly up to 1.2, and Linux up to 2.6.15 allows root users to bypass immutable settings for files by mounting another filesystem that masks the immutable files while the system is running.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2005-12-19 CVE Reserved
- 2005-12-31 CVE Published
- 2023-03-07 EPSS Updated
- 2024-08-07 CVE Updated
- 2024-08-07 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
CAPEC
References (5)
| URL | Tag | Source |
|---|---|---|
| http://archives.neohapsis.com/archives/openbsd/2005-10/1523.html | X_refsource_misc | |
| http://www.redteam-pentesting.de/advisories/rt-sa-2005-15.txt | X_refsource_misc | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/24037 | Vdb Entry |
| URL | Date | SRC |
|---|---|---|
| http://lists.grok.org.uk/pipermail/full-disclosure/2006-January/041177.html | 2024-08-07 | |
| http://www.redteam-pentesting.de/advisories/rt-sa-2005-015.txt | 2024-08-07 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Dragonfly Search vendor "Dragonfly" | Dragonfly Search vendor "Dragonfly" for product "Dragonfly" | <= 1.2 Search vendor "Dragonfly" for product "Dragonfly" and version " <= 1.2" | - |
Affected
| ||||||
| Freebsd Search vendor "Freebsd" | Freebsd Search vendor "Freebsd" for product "Freebsd" | <= 6.0 Search vendor "Freebsd" for product "Freebsd" and version " <= 6.0" | stable |
Affected
| ||||||
| Freebsd Search vendor "Freebsd" | Freebsd Search vendor "Freebsd" for product "Freebsd" | 7.0 Search vendor "Freebsd" for product "Freebsd" and version "7.0" | current |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | <= 2.6.15 Search vendor "Linux" for product "Linux Kernel" and version " <= 2.6.15" | - |
Affected
| ||||||
| Openbsd Search vendor "Openbsd" | Openbsd Search vendor "Openbsd" for product "Openbsd" | <= 3.8 Search vendor "Openbsd" for product "Openbsd" and version " <= 3.8" | - |
Affected
| ||||||