High

CVE-2003-0127 - Unspecified vulnerability in Linux Kernel

Publication: 2003-03-31
Summary

The kernel module loader in Linux kernel 2.2.x before 2.2.25, and 2.4.x before 2.4.21, allows local users to gain root privileges by using ptrace to attach to a child process that is spawned by the kernel.

Risk level (CVSS 7.2)

High

7.2

Access Vector

  • Network
  • Adjacent Network
  • Local

Access Complexity

  • Low
  • Medium
  • High

Authentication

  • None
  • Single
  • Multiple

Confident. Impact

  • Complete
  • Partial
  • None

Integrity Impact

  • Complete
  • Partial
  • None

Affected Products

  • Linux Linux Kernel 2.2.0
  • Linux Linux Kernel 2.2.1
  • Linux Linux Kernel 2.2.2
  • Linux Linux Kernel 2.2.3
  • Linux Linux Kernel 2.2.4
  • Linux Linux Kernel 2.2.5
  • Linux Linux Kernel 2.2.6
  • Linux Linux Kernel 2.2.7
  • Linux Linux Kernel 2.2.8
  • Linux Linux Kernel 2.2.9
  • Linux Linux Kernel 2.2.10
  • Linux Linux Kernel 2.2.11
  • Linux Linux Kernel 2.2.12
  • Linux Linux Kernel 2.2.13
  • Linux Linux Kernel 2.2.14
  • Linux Linux Kernel 2.2.15
  • Linux Linux Kernel 2.2.16
  • Linux Linux Kernel 2.2.17
  • Linux Linux Kernel 2.2.18
  • Linux Linux Kernel 2.2.19
  • Linux Linux Kernel 2.2.20
  • Linux Linux Kernel 2.2.21
  • Linux Linux Kernel 2.2.22
  • Linux Linux Kernel 2.2.23
  • Linux Linux Kernel 2.2.24
  • Linux Linux Kernel 2.4.0
  • Linux Linux Kernel 2.4.1
  • Linux Linux Kernel 2.4.2
  • Linux Linux Kernel 2.4.3
  • Linux Linux Kernel 2.4.4
  • Linux Linux Kernel 2.4.5
  • Linux Linux Kernel 2.4.6
  • Linux Linux Kernel 2.4.7
  • Linux Linux Kernel 2.4.8
  • Linux Linux Kernel 2.4.9
  • Linux Linux Kernel 2.4.10
  • Linux Linux Kernel 2.4.11
  • Linux Linux Kernel 2.4.12
  • Linux Linux Kernel 2.4.13
  • Linux Linux Kernel 2.4.14
  • Linux Linux Kernel 2.4.15
  • Linux Linux Kernel 2.4.16
  • Linux Linux Kernel 2.4.17
  • Linux Linux Kernel 2.4.18
  • Linux Linux Kernel 2.4.19
  • Linux Linux Kernel 2.4.20
  • Linux Linux Kernel 2.4.21