Vulnerabilities > CVE-2005-0666 - Privilege Escalation vulnerability in PaX VMA Mirroring

CVSS 4.6 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

low complexity

the-pax-team

exploit available

NVD

Published: 2005-05-02

Updated: 2008-09-05

Summary

Unknown vulnerability in PaX from the September 2003 release to 2.2 before 2005.03.05, related to SEGMEXEC or RANDEXEC and VMA mirroring, allows local users and possibly remote attackers to bypass intended access restrictions and execute arbitrary code.

Vulnerable Configurations

Part	Description	Count
Application	The_Pax_Team THE PAX Team PAX Linux 2.2 THE PAX Team PAX Linux 2.4.20 THE PAX Team PAX Linux 2.4.21 THE PAX Team PAX Linux 2.4.22 THE PAX Team PAX Linux 2.4.23 THE PAX Team PAX Linux 2.4.24 THE PAX Team PAX Linux 2.4.25 THE PAX Team PAX Linux 2.4.26 THE PAX Team PAX Linux 2.4.27 THE PAX Team PAX Linux 2.4.28 THE PAX Team PAX Linux 2.6.5	11

Exploit-Db

description	PaX Double-Mirrored VMA munmap Local Root Exploit. CVE-2005-0666. Local exploit for linux platform
id	EDB-ID:876
last seen	2016-01-31
modified	2005-03-14
published	2005-03-14
reporter	Christophe Devine
source	https://www.exploit-db.com/download/876/
title	PaX Double-Mirrored VMA munmap Local Root Exploit

Summary

Vulnerable Configurations

Exploit-Db

References