CVE-2003-0019

high

Description

uml_net in the kernel-utils package for Red Hat Linux 8.0 has incorrect setuid root privileges, which allows local users to modify network interfaces, e.g. by modifying ARP entries or placing interfaces into promiscuous mode.

References

http://www.securityfocus.com/bid/6801

http://www.redhat.com/support/errata/RHSA-2003-056.html

http://www.kb.cert.org/vuls/id/134025

http://www.iss.net/security_center/static/11276.php

http://www.ciac.org/ciac/bulletins/n-044.shtml

Details

Source: Mitre, NVD

Published: 2003-02-19

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 7.2

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.0021