1. Home
  2. CVE Database
  3. CVE-2004-0814
LOW · 1.2

CVE-2004-0814

Multiple race conditions in the terminal layer in Linux 2.4.x, and 2.6.x before 2.6.9, allow (1) local users to obtain portions of kernel data via a TIOCSETD ioctl call to a terminal interface that is...

Vulnerability Description

Multiple race conditions in the terminal layer in Linux 2.4.x, and 2.6.x before 2.6.9, allow (1) local users to obtain portions of kernel data via a TIOCSETD ioctl call to a terminal interface that is being accessed by another thread, or (2) remote attackers to cause a denial of service (panic) by switching from console to PPP line discipline, then quickly sending data that is received during the switch.

CVSS Score

1.2

LOW

AV:L/AC:H/Au:N/C:N/I:N/A:P
Confidentiality
NONE
Integrity
NONE
Availability
PARTIAL

Affected Products

VendorProductVersions
LinuxLinux Kernel2.2.0
UbuntuUbuntu Linux4.1

References

FAQ

What is CVE-2004-0814?

CVE-2004-0814 is a vulnerability with a CVSS score of 1.2 (LOW). Multiple race conditions in the terminal layer in Linux 2.4.x, and 2.6.x before 2.6.9, allow (1) local users to obtain portions of kernel data via a TIOCSETD ioctl call to a terminal interface that is...

How severe is CVE-2004-0814?

CVE-2004-0814 has been rated LOW with a CVSS base score of 1.2/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2004-0814?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Ubuntu Ubuntu Linux.