CVE-2003-1161

exit.c in Linux kernel 2.6-test9-CVS, as stored on kernel.bkbits.net, was modified to contain a backdoor, which could allow local users to elevate their privileges by passing __WCLONE|__WALL to the sys_wait4 function.

Published: Dec 31, 2003
Updated: Apr 13, 2023
CVE: CVE-2003-1161
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
linux / linux_kernel	2.6_test9_cvs	2.6_test9_cvs.x

http://www.securityfocus.com/bid/8987
http://www.ussg.iu.edu/hypermail/linux/kernel/0311.0/0621.html
http://www.ussg.iu.edu/hypermail/linux/kernel/0311.0/0627.html
http://www.ussg.iu.edu/hypermail/linux/kernel/0311.0/0630.html

Vulnerability Database

289,599

CVE-2003-1161