Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Apr 16, 2026
CVE-2004-2408
CVE-2004-2408
Description
Linux VServer 1.27 and earlier, 1.3.9 and earlier, and 1.9.1 and earlier shares /proc permissions across all virtual and host servers, which allows local users with the ability to set permissions in /proc to obtain system information or cause a denial of service on other virtual servers or the host server.
Affected products
19cpe:2.3:a:vserver:linux-vserver:1.20:*:*:*:*:*:*:*+ 18 more
- cpe:2.3:a:vserver:linux-vserver:1.20:*:*:*:*:*:*:*
- cpe:2.3:a:vserver:linux-vserver:1.21:*:*:*:*:*:*:*
- cpe:2.3:a:vserver:linux-vserver:1.22:*:*:*:*:*:*:*
- cpe:2.3:a:vserver:linux-vserver:1.23:*:*:*:*:*:*:*
- cpe:2.3:a:vserver:linux-vserver:1.24:*:*:*:*:*:*:*
- cpe:2.3:a:vserver:linux-vserver:1.25:*:*:*:*:*:*:*
- cpe:2.3:a:vserver:linux-vserver:1.26:*:*:*:*:*:*:*
- cpe:2.3:a:vserver:linux-vserver:1.27:*:*:*:*:*:*:*
- cpe:2.3:a:vserver:linux-vserver:1.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:vserver:linux-vserver:1.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:vserver:linux-vserver:1.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:vserver:linux-vserver:1.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:vserver:linux-vserver:1.3.4:*:*:*:*:*:*:*
- cpe:2.3:a:vserver:linux-vserver:1.3.5:*:*:*:*:*:*:*
- cpe:2.3:a:vserver:linux-vserver:1.3.6:*:*:*:*:*:*:*
- cpe:2.3:a:vserver:linux-vserver:1.3.7:*:*:*:*:*:*:*
- cpe:2.3:a:vserver:linux-vserver:1.3.8:*:*:*:*:*:*:*
- cpe:2.3:a:vserver:linux-vserver:1.3.9:*:*:*:*:*:*:*
- cpe:2.3:a:vserver:linux-vserver:1.9.1:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7- secunia.com/advisories/12021nvdPatchVendor Advisory
- www.securityfocus.com/bid/10660nvdPatch
- archives.neohapsis.com/archives/bugtraq/2004-07/0040.htmlnvdVendor Advisory
- securitytracker.com/idnvdVendor Advisory
- linux-vserver.org/ChangeLognvd
- www.osvdb.org/7480nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/16626nvd
News mentions
0No linked articles in our index yet.