Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2008-3525
Modified
More InfoOfficial Page
Source-secalert@redhat.com
View Known Exploited Vulnerability (KEV) details
Published At-03 Sep, 2008 | 14:12
Updated At-13 Feb, 2023 | 02:19

The sbni_ioctl function in drivers/net/wan/sbni.c in the wan subsystem in the Linux kernel 2.6.26.3 does not check for the CAP_NET_ADMIN capability before processing a (1) SIOCDEVRESINSTATS, (2) SIOCDEVSHWSTATE, (3) SIOCDEVENSLAVE, or (4) SIOCDEVEMANSIPATE ioctl request, which allows local users to bypass intended capability restrictions.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary2.07.2HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
CPE Matches
Linux Kernel Organization, Inc
linux
>>linux_kernel>>2.6.26.3
cpe:2.3:o:linux:linux_kernel:2.6.26.3:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-264Primarynvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f2455eb176ac87081bbfc9a44b21c7cd2bc1967esecalert@redhat.com
N/A
http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00000.htmlsecalert@redhat.com
N/A
http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00003.htmlsecalert@redhat.com
N/A
http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00007.htmlsecalert@redhat.com
N/A
http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00008.htmlsecalert@redhat.com
N/A
http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00010.htmlsecalert@redhat.com
N/A
http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00001.htmlsecalert@redhat.com
N/A
http://secunia.com/advisories/32103secalert@redhat.com
N/A
http://secunia.com/advisories/32237secalert@redhat.com
N/A
http://secunia.com/advisories/32315secalert@redhat.com
N/A
http://secunia.com/advisories/32356secalert@redhat.com
N/A
http://secunia.com/advisories/32370secalert@redhat.com
N/A
http://secunia.com/advisories/32386secalert@redhat.com
N/A
http://secunia.com/advisories/32393secalert@redhat.com
N/A
http://secunia.com/advisories/32759secalert@redhat.com
N/A
http://secunia.com/advisories/33201secalert@redhat.com
N/A
http://secunia.com/advisories/33280secalert@redhat.com
N/A
http://www.debian.org/security/2008/dsa-1653secalert@redhat.com
N/A
http://www.debian.org/security/2008/dsa-1655secalert@redhat.com
N/A
http://www.kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.36.7secalert@redhat.com
N/A
http://www.mandriva.com/security/advisories?name=MDVSA-2008:220secalert@redhat.com
N/A
http://www.mandriva.com/security/advisories?name=MDVSA-2008:223secalert@redhat.com
N/A
http://www.openwall.com/lists/oss-security/2008/08/29/2secalert@redhat.com
N/A
http://www.redhat.com/support/errata/RHSA-2008-0787.htmlsecalert@redhat.com
N/A
http://www.redhat.com/support/errata/RHSA-2008-0973.htmlsecalert@redhat.com
N/A
http://www.securitytracker.com/id?1020969secalert@redhat.com
N/A
http://www.ubuntu.com/usn/usn-659-1secalert@redhat.com
N/A
http://www.vupen.com/english/advisories/2008/2511secalert@redhat.com
N/A
http://www.vupen.com/english/advisories/2008/2714secalert@redhat.com
N/A
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5671secalert@redhat.com
N/A
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9364secalert@redhat.com
N/A
https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00689.htmlsecalert@redhat.com
N/A
https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00693.htmlsecalert@redhat.com
N/A
Change History
0Changes found
Details not found