CVE-2003-0019
First published: Wed Feb 19 2003(Updated: )
uml_net in the kernel-utils package for Red Hat Linux 8.0 has incorrect setuid root privileges, which allows local users to modify network interfaces, e.g. by modifying ARP entries or placing interfaces into promiscuous mode.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Red Hat Linux | =8.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2003-0019?
CVE-2003-0019 has been classified as a moderate severity vulnerability due to its potential to allow local users to manipulate network interfaces.
How do I fix CVE-2003-0019?
To fix CVE-2003-0019, remove the setuid bit from the uml_net binary or upgrade to a secure version of the kernel-utils package.
Who is affected by CVE-2003-0019?
CVE-2003-0019 affects local users of Red Hat Linux 8.0 who can exploit the incorrect setuid root privileges of the uml_net binary.
What can attackers do with CVE-2003-0019?
Attackers can modify network interfaces, including changing ARP entries and enabling promiscuous mode, which could lead to network data interception.
When was CVE-2003-0019 disclosed?
CVE-2003-0019 was disclosed in 2003, highlighting a vulnerability in the kernel-utils package for Red Hat Linux 8.0.
- agent/type
- agent/first-publish-date
- agent/remedy
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/references
- agent/weakness
- agent/severity
- agent/last-modified-date
- agent/description
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-historical
- vendor/redhat
- product/linux
- canonical/redhat linux
- agent/software-canonical-lookup-request
- collector/nvd-index
- canonical/red hat linux
- version/red hat linux/8.0