CVE-2005-0750
First published: Sun Mar 27 2005(Updated: )
The bluez_sock_create function in the Bluetooth stack for Linux kernel 2.4.6 through 2.4.30-rc1 and 2.6 through 2.6.11.5 allows local users to gain privileges via (1) socket or (2) socketpair call with a negative protocol value.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Conectiva Linux | =10.0 | |
| Linux Kernel | =2.4.6 | |
| Linux Kernel | =2.4.7 | |
| Linux Kernel | =2.4.8 | |
| Linux Kernel | =2.4.9 | |
| Linux Kernel | =2.4.10 | |
| Linux Kernel | =2.4.11 | |
| Linux Kernel | =2.4.12 | |
| Linux Kernel | =2.4.13 | |
| Linux Kernel | =2.4.14 | |
| Linux Kernel | =2.4.15 | |
| Linux Kernel | =2.4.16 | |
| Linux Kernel | =2.4.17 | |
| Linux Kernel | =2.4.18 | |
| Linux Kernel | =2.4.19 | |
| Linux Kernel | =2.4.20 | |
| Linux Kernel | =2.4.21 | |
| Linux Kernel | =2.4.22 | |
| Linux Kernel | =2.4.23 | |
| Linux Kernel | =2.4.24 | |
| Linux Kernel | =2.4.25 | |
| Linux Kernel | =2.4.26 | |
| Linux Kernel | =2.4.27 | |
| Linux Kernel | =2.4.28 | |
| Linux Kernel | =2.4.29 | |
| Linux Kernel | =2.6.0 | |
| Linux Kernel | =2.6.1 | |
| Linux Kernel | =2.6.2 | |
| Linux Kernel | =2.6.3 | |
| Linux Kernel | =2.6.4 | |
| Linux Kernel | =2.6.5 | |
| Linux Kernel | =2.6.6 | |
| Linux Kernel | =2.6.7 | |
| Linux Kernel | =2.6.8 | |
| Linux Kernel | =2.6.9-2.6.20 | |
| Linux Kernel | =2.6.10 | |
| Linux Kernel | =2.6.11 | |
| Red Hat Enterprise Linux | =4.0 | |
| Red Hat Enterprise Linux | =4.0 | |
| Red Hat Enterprise Linux | =4.0 | |
| Red Hat Enterprise Linux Desktop | =4.0 | |
| Red Hat Fedora Core | =core_1.0 | |
| Red Hat Fedora Core | =core_2.0 | |
| Red Hat Fedora Core | =core_3.0 | |
| Red Hat Linux | =7.3 | |
| Red Hat Linux | =7.3 | |
| Red Hat Linux | =7.3 | |
| Red Hat Linux | =9.0 | |
| SUSE Linux | =1.0 | |
| SUSE Linux | =9.3 | |
| Ubuntu | =4.1 | |
| Ubuntu | =4.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.grok.org.uk/pipermail/full-disclosure/2005-March/032913.html
- http://www.redhat.com/support/errata/RHSA-2005-283.html
- http://www.redhat.com/support/errata/RHSA-2005-284.html
- https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=152532
- http://www.redhat.com/support/errata/RHSA-2005-293.html
- http://www.redhat.com/support/errata/RHSA-2005-366.html
- http://www.securityfocus.com/bid/12911
- http://marc.info/?l=bugtraq&m=111204562102633&w=2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19844
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11719
Frequently Asked Questions
What is the severity of CVE-2005-0750?
CVE-2005-0750 is a privilege escalation vulnerability that is considered to have a high severity due to potential exploitation by local users.
How do I fix CVE-2005-0750?
To mitigate CVE-2005-0750, users should upgrade to the patched versions of the Linux kernel that are unaffected by this vulnerability.
Who is affected by CVE-2005-0750?
CVE-2005-0750 affects local users on systems running vulnerable versions of the Linux kernel, including 2.4.6 to 2.4.30 and 2.6 to 2.6.11.5.
What systems are vulnerable to CVE-2005-0750?
Vulnerable systems include various distributions of the Linux kernel, including Conectiva Linux 10.0, Red Hat Enterprise Linux 4.0, and several versions of Ubuntu, SUSE, and Fedora.
What can an attacker do with CVE-2005-0750?
An attacker exploiting CVE-2005-0750 can gain elevated privileges on a vulnerable system by using socket or socketpair calls with a negative protocol value.
- agent/references
- agent/type
- agent/first-publish-date
- agent/remedy
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/event
- agent/description
- agent/source
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- agent/softwarecombine
- agent/tags
- vendor/conectiva
- canonical/conectiva linux
- version/conectiva linux/10.0
- vendor/linux
- canonical/linux kernel
- version/linux kernel/2.4.6
- version/linux kernel/2.4.7
- version/linux kernel/2.4.8
- version/linux kernel/2.4.9
- version/linux kernel/2.4.10
- version/linux kernel/2.4.11
- version/linux kernel/2.4.12
- version/linux kernel/2.4.13
- version/linux kernel/2.4.14
- version/linux kernel/2.4.15
- version/linux kernel/2.4.16
- version/linux kernel/2.4.17
- version/linux kernel/2.4.18
- version/linux kernel/2.4.19
- version/linux kernel/2.4.20
- version/linux kernel/2.4.21
- version/linux kernel/2.4.22
- version/linux kernel/2.4.23
- version/linux kernel/2.4.24
- version/linux kernel/2.4.25
- version/linux kernel/2.4.26
- version/linux kernel/2.4.27
- version/linux kernel/2.4.28
- version/linux kernel/2.4.29
- version/linux kernel/2.6.0
- version/linux kernel/2.6.1
- version/linux kernel/2.6.2
- version/linux kernel/2.6.3
- version/linux kernel/2.6.4
- version/linux kernel/2.6.5
- version/linux kernel/2.6.6
- version/linux kernel/2.6.7
- version/linux kernel/2.6.8
- version/linux kernel/2.6.9-2.6.20
- version/linux kernel/2.6.10
- version/linux kernel/2.6.11
- vendor/redhat
- canonical/red hat enterprise linux
- version/red hat enterprise linux/4.0
- canonical/red hat enterprise linux desktop
- version/red hat enterprise linux desktop/4.0
- canonical/red hat fedora core
- version/red hat fedora core/core_1.0
- version/red hat fedora core/core_2.0
- version/red hat fedora core/core_3.0
- canonical/red hat linux
- version/red hat linux/7.3
- version/red hat linux/9.0
- vendor/suse
- canonical/suse linux
- version/suse linux/1.0
- version/suse linux/9.3
- vendor/ubuntu
- canonical/ubuntu linux
- version/ubuntu linux/4.1