Vulnerabilities > CVE-2004-2073

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

vserver

exploit available

NVD

Published: 2004-02-06

Updated: 2017-07-11

Summary

Linux-VServer 1.24 allows local users with root privileges on a virtual server to gain access to the filesystem outside the virtual server via a modified chroot-again exploit using the chmod command.

Vulnerable Configurations

Part	Description	Count
Application	Vserver Vserver Linux Vserver 1.20 Vserver Linux Vserver 1.21 Vserver Linux Vserver 1.22 Vserver Linux Vserver 1.23 Vserver Linux Vserver 1.24	5

Exploit-Db

description	Linux VServer Project 1.2x CHRoot Breakout Vulnerability. CVE-2004-2073. Local exploit for linux platform
id	EDB-ID:23658
last seen	2016-02-02
modified	2004-02-06
published	2004-02-06
reporter	Markus Mueller
source	https://www.exploit-db.com/download/23658/
title	Linux VServer Project 1.2x CHRoot Breakout Vulnerability

Vulnerabilities > CVE-2004-2073 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2004-2073"}]}

Summary

Vulnerable Configurations

Exploit-Db

References

Vulnerabilities > CVE-2004-2073