Low

CVE-2005-4352 - Unspecified vulnerability in multiple products

Publication: 2005-12-31
Summary

The securelevels implementation in NetBSD 2.1 and earlier, and Linux 2.6.15 and earlier, allows local users to bypass time setting restrictions and set the clock backwards by setting the clock ahead to the maximum unixtime value (19 Jan 2038), which then wraps around to the minimum value (13 Dec 1901), which can then be set ahead to the desired time, aka "settimeofday() time wrap."

Risk level (CVSS 2.1)

Low

2.1

Access Vector

  • Network
  • Adjacent Network
  • Local

Access Complexity

  • Low
  • Medium
  • High

Authentication

  • None
  • Single
  • Multiple

Confident. Impact

  • Complete
  • Partial
  • None

Integrity Impact

  • Complete
  • Partial
  • None

Affected Products

  • Linux Linux Kernel 2.6.0
  • Netbsd Netbsd current
  • Linux Linux Kernel 2.6.0
  • Linux Linux Kernel 2.6.0
  • Linux Linux Kernel 2.6.0
  • Linux Linux Kernel 2.6.0
  • Linux Linux Kernel 2.6.0
  • Linux Linux Kernel 2.6.0
  • Linux Linux Kernel 2.6.0
  • Linux Linux Kernel 2.6.0
  • Linux Linux Kernel 2.6.0
  • Linux Linux Kernel 2.6.0
  • Linux Linux Kernel 2.6.1
  • Linux Linux Kernel 2.6.1
  • Linux Linux Kernel 2.6.1
  • Linux Linux Kernel 2.6.2
  • Linux Linux Kernel 2.6.3
  • Linux Linux Kernel 2.6.4
  • Linux Linux Kernel 2.6.5
  • Linux Linux Kernel 2.6.6
  • Linux Linux Kernel 2.6.6
  • Linux Linux Kernel 2.6.7
  • Linux Linux Kernel 2.6.7
  • Linux Linux Kernel 2.6.8
  • Linux Linux Kernel 2.6.8
  • Linux Linux Kernel 2.6.8
  • Linux Linux Kernel 2.6.8
  • Linux Linux Kernel 2.6.9
  • Linux Linux Kernel 2.6.10
  • Linux Linux Kernel 2.6.10
  • Linux Linux Kernel 2.6.11
  • Linux Linux Kernel 2.6.11
  • Linux Linux Kernel 2.6.11
  • Linux Linux Kernel 2.6.11
  • Linux Linux Kernel 2.6.11.5
  • Linux Linux Kernel 2.6.11.6
  • Linux Linux Kernel 2.6.11.7
  • Linux Linux Kernel 2.6.11.8
  • Linux Linux Kernel 2.6.11.11
  • Linux Linux Kernel 2.6.11.12
  • Linux Linux Kernel 2.6.0
  • Linux Linux Kernel 2.6.12
  • Linux Linux Kernel 2.6.12
  • Linux Linux Kernel 2.6.12.1
  • Linux Linux Kernel 2.6.12.2
  • Linux Linux Kernel 2.6.12.3
  • Linux Linux Kernel 2.6.12.4
  • Linux Linux Kernel 2.6.12.5
  • Linux Linux Kernel 2.6.12.6
  • Linux Linux Kernel 2.6.13
  • Linux Linux Kernel 2.6.13
  • Linux Linux Kernel 2.6.13
  • Linux Linux Kernel 2.6.13
  • Linux Linux Kernel 2.6.13
  • Linux Linux Kernel 2.6.13.1
  • Linux Linux Kernel 2.6.13.2
  • Linux Linux Kernel 2.6.13.3
  • Linux Linux Kernel 2.6.13.4
  • Linux Linux Kernel 2.6.14
  • Linux Linux Kernel 2.6.14
  • Linux Linux Kernel 2.6.14
  • Linux Linux Kernel 2.6.14
  • Linux Linux Kernel 2.6.14
  • Linux Linux Kernel 2.6.14.1
  • Linux Linux Kernel 2.6.14.2
  • Linux Linux Kernel 2.6.14.3
  • Linux Linux Kernel 2.6.15
  • Linux Linux Kernel 2.6.15
  • Linux Linux Kernel 2.6.15
  • Linux Linux Kernel 2.6_test9_cvs
  • Netbsd Netbsd 1.6
  • Netbsd Netbsd 1.6
  • Netbsd Netbsd 1.6.1
  • Netbsd Netbsd 1.6.2
  • Netbsd Netbsd 2.0
  • Netbsd Netbsd 2.0.1
  • Netbsd Netbsd 2.0.2
  • Netbsd Netbsd 2.0.3
  • Netbsd Netbsd 2.1
  • Linux Linux Kernel 2.6.12