CVE-2006-2451

{"id": "CVE-2006-2451", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}]}, "published": "2006-07-07T18:05:00.000", "references": [{"url": "http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=195902", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/20953", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/20960", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/20965", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/20986", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/20991", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/21179", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/21498", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/21966", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://securitytracker.com/id?1016451", "source": "secalert@redhat.com"}, {"url": "http://support.avaya.com/elmodocs2/security/ASA-2006-162.htm", "source": "secalert@redhat.com"}, {"url": "http://www.kernel.org/git/?p=linux/kernel/git/stable/linux-2.6.17.y.git%3Ba=commit%3Bh=0af184bb9f80edfbb94de46cb52e9592e5a547b0", "source": "secalert@redhat.com"}, {"url": "http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.24", "source": "secalert@redhat.com"}, {"url": "http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.17.4", "source": "secalert@redhat.com"}, {"url": "http://www.novell.com/linux/security/advisories/2006_16_sr.html", "source": "secalert@redhat.com"}, {"url": "http://www.novell.com/linux/security/advisories/2006_17_sr.html", "source": "secalert@redhat.com"}, {"url": "http://www.novell.com/linux/security/advisories/2006_42_kernel.html", "source": "secalert@redhat.com"}, {"url": "http://www.novell.com/linux/security/advisories/2006_47_kernel.html", "source": "secalert@redhat.com"}, {"url": "http://www.novell.com/linux/security/advisories/2006_49_kernel.html", "source": "secalert@redhat.com"}, {"url": "http://www.osvdb.org/27030", "source": "secalert@redhat.com"}, {"url": "http://www.redhat.com/support/errata/RHSA-2006-0574.html", "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/archive/1/439483/100/100/threaded", "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/archive/1/439610/100/100/threaded", "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/archive/1/439869/100/0/threaded", "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/archive/1/440057/100/0/threaded", "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/archive/1/440117/100/0/threaded", "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/archive/1/440118/100/0/threaded", "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/archive/1/440379/100/0/threaded", "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/bid/18874", "source": "secalert@redhat.com"}, {"url": "http://www.ubuntu.com/usn/usn-311-1", "source": "secalert@redhat.com"}, {"url": "http://www.vupen.com/english/advisories/2006/2699", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "https://issues.rpath.com/browse/RPL-488", "source": "secalert@redhat.com"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11336", "source": "secalert@redhat.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-399"}]}], "descriptions": [{"lang": "en", "value": "The suid_dumpable support in Linux kernel 2.6.13 up to versions before 2.6.17.4, and 2.6.16 before 2.6.16.24, allows a local user to cause a denial of service (disk consumption) and possibly gain privileges via the PR_SET_DUMPABLE argument of the prctl function and a program that causes a core dump file to be created in a directory for which the user does not have permissions."}, {"lang": "es", "value": "El soporte suid_dumpable de Linux kernel 2.6.13 hasta versiones anteriores a 2.6.17.4, y 2.6.16 anterior a 2.6.16.24, permite a usuarios locales provocar una denegaci\u00f3n de servicio (agotamiento de disco) y posiblemente obtener privilegios a trav\u00e9s del argumento PR_SET_DUMPABLE de la funci\u00f3n prctl y un programa que provoca que se cree un fichero de volcado de memoria (core dump) en un directorio en el que el usuario no tiene permisos."}], "lastModified": "2023-11-07T01:58:49.620", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6143DC1F-D62E-4DB2-AF43-30A07413D68B"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.13.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "298266AB-2A36-4606-BF80-2185FC56C4D2"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.13.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7C2658CA-56C2-494F-AC42-618EC413CBDF"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.13.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AD34526D-F2CC-44C5-991D-B1E41C327860"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.13.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C2F0B900-34E9-4545-B7AE-AF0A4363EACE"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.13.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B36F432D-FED1-4B8D-A458-BEDEEF306AB1"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5220F0FE-C4CC-4E75-A16A-4ADCABA7E8B8"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.14:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "04F25DE0-CA8E-4F57-87A5-C30D89CC9E44"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.14:rc2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F87F764B-4097-44FA-B96E-A5DA75E31F7B"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.14:rc3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D7025803-C679-44DB-ADEE-864E6CAAD9B5"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.14:rc4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "24B879D6-4631-49A8-9366-75577DFB755D"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.14:rc5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C5B76C21-70C8-4911-A24B-270F876EF7C0"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.14.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "25379B32-D898-4E44-A740-978A129B5E05"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.14.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7B90F8F2-9549-413D-9676-3EF634D832B5"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.14.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "915E64EF-6EEC-4DE2-A285-5F3FCE389645"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.14.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "585BEE46-088A-494E-8E18-03F33F6BBEA5"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.14.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EFF35478-B292-4A00-B985-CEEDE8B212C3"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.14.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6E85846A-61BE-4896-B4A6-42A7E1DBA515"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.14.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D6E3B925-031D-4F6D-915A-A16F0FFA878C"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7344B707-6145-48BA-8BC9-9B140A260BCF"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.15:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "390B1E09-7014-4A74-834C-806BBEBAF6F4"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.15:rc2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FEF02479-2124-4655-A38D-A4793D3B8A1A"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.15:rc3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0FB5CF04-B5B6-4DFB-B051-61EDA257019F"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.15:rc4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A89DC9CD-C06F-4B9B-B376-900E65016296"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.15:rc5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "15BED7A7-3E96-43EF-8B6F-3C94897C3AA1"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.15:rc6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8C6FCAC4-B6C6-4125-B3AC-F30407AA7738"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.15:rc7:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "707ECC75-65B6-4B02-BE85-A4804549A2DD"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.15.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9BFCEA98-C708-4E1E-B189-E6F96D28F07A"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.15.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2B753112-CCDE-4870-AA97-4AAA2946421A"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.15.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "79B3AFE7-F4FF-4144-9046-E5926E305A03"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.15.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7616E197-ACCA-4191-A513-FD48417C7F88"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.15.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ED1AA7FC-F5B9-406C-ABE4-0BE5E9889619"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.15.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7EE2F94D-E8E0-4BB7-A910-378012580025"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.15.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "66F5AE3B-B701-4579-B44A-0F7A4267852E"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "34E60197-56C3-485C-9609-B1C4A0E0FCB2"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D1369C4A-EF3B-4805-9046-ADA38ED940C2"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:rc2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CC3639E1-B5E4-4DD6-80D4-BA07D192C42D"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:rc3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "54393D69-B368-4296-9798-D81570495C6C"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:rc4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6791A801-9E06-47DD-912F-D8594E2F6B3F"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:rc5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AE90CCED-3A5B-46E3-A6B0-4865AB786289"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:rc6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CBFF6DE7-6D7C-469A-9B2D-2F6E915F55B0"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "86E452E4-45A9-4469-BF69-F40B6598F0EA"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C5751AC4-A60F-42C6-88E5-FC8CFEE6F696"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1FF886A6-7E73-47AD-B6A5-A9EC5BEDCD0C"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "48777A01-8F36-4752-8F7A-1D1686C69A33"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "42DA6A18-5AA1-4920-94C6-8D0BB73C5352"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "992EA5DE-5A5B-4782-8B5A-BDD8D6FB1E31"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E51F0211-2D3E-4260-AD63-E83AE4EC4AF8"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4C4E1245-C6BB-462C-9E27-C608595DAE3C"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "747F1324-AEFA-496F-9447-12CD13114F60"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "795C3B17-687E-4F33-AA99-8FEC16F14693"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F2BDD5C7-9B6A-41B5-8679-5062B8A6E11B"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "190D5E2C-AD60-41F4-B29D-FB8EA8CB5FF6"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6B81A4DD-2ADE-4455-B517-5E4E0532D5A1"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4BD589CC-666B-4FAA-BCF0-91C484BDDB09"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4CD622EE-A840-42E1-B6BF-4AA27D039B12"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.16:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "900D6742-DE0F-45C5-A812-BF84088CB02A"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.17:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "225CA94C-8C84-4FA6-95D0-160A0016FBFF"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.18:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D88ED3C4-64C5-44B2-9F23-E16087046C40"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.19:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "03FB31E5-190C-489A-AB30-910D2CC854F2"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.20:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EF4A781A-4A41-466F-8426-10B40CF8BA1A"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.21:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9ED29B3F-456B-4767-8E59-8C19A3B7E1D8"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.22:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F6316369-B54A-4E59-A022-E0610353B284"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.23:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "073C3CE0-E12D-4545-8460-5A1514271D50"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.17:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9E86E13B-EC92-47F3-94A9-DB515313011D"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.17:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "980A6C7D-6175-4A44-8377-74AA7A9FD108"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.17:rc2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5C226902-04D9-4F32-866C-20225841ECF8"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.17:rc3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C6EDD210-6E7B-4BD8-96C2-2C22FEE7DE97"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.17:rc4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "655DB612-AF49-4C17-AFB9-2E33EE8E0572"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.17:rc5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7EE30F34-EE81-4E1E-BF9F-A7A36B78B897"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.17:rc6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E1F65DF2-2794-47B7-9676-CCF150683CC6"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.17.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DEB3068F-2F64-4BBC-BA3C-FB56A2FBED50"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.17.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6555D45B-D3B3-4455-AB1E-E513F9FB6139"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.17.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4FA5E262-7825-496F-AA72-0AD6DE6F3C78"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}