CVE-2004-1116 — HIGH (7.2) — White Hats Nepal

Vulnerability Description

The init scripts in Great Internet Mersenne Prime Search (GIMPS) 23.9 and earlier execute user-owned programs with root privileges, which allows local users to gain privileges by modifying the programs.

CVSS Score

7.2

HIGH

AV:L/AC:L/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Gentoo	Linux	All versions

References

http://www.gentoo.org/security/en/glsa/glsa-200411-26.xmlPatchVendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/18149
http://www.gentoo.org/security/en/glsa/glsa-200411-26.xmlPatchVendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/18149

FAQ

What is CVE-2004-1116?

CVE-2004-1116 is a vulnerability with a CVSS score of 7.2 (HIGH). The init scripts in Great Internet Mersenne Prime Search (GIMPS) 23.9 and earlier execute user-owned programs with root privileges, which allows local users to gain privileges by modifying the program...

How severe is CVE-2004-1116?

CVE-2004-1116 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2004-1116?

Check the references section above for vendor advisories and patch information. Affected products include: Gentoo Linux.