Vulnerability Details CVE-2005-4347
The Linux 2.4 kernel patch in kernel-patch-vserver before 1.9.5.5 and 2.x before 2.3 for Debian GNU/Linux does not correctly set the "chroot barrier" with util-vserver, which allows attackers to access files on the host system that are outside of the vserver.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 75.5%
CVSS Severity
CVSS v2 Score 5.0
References
Products affected by CVE-2005-4347
-
cpe:2.3:a:debian:kernel-patch-vserver:-
-
cpe:2.3:a:debian:kernel-patch-vserver:1.9.5
-
cpe:2.3:a:debian:kernel-patch-vserver:1.9.5.2
-
cpe:2.3:a:debian:kernel-patch-vserver:1.9.5.3
-
cpe:2.3:a:debian:kernel-patch-vserver:1.9.5.4
-
cpe:2.3:a:debian:kernel-patch-vserver:2.0
-
cpe:2.3:a:debian:kernel-patch-vserver:2.1
-
cpe:2.3:o:debian:debian_linux:3.0
-
cpe:2.3:o:debian:debian_linux:3.1