CVE-2005-4351

The securelevels implementation in FreeBSD 7.0 and earlier, OpenBSD up to 3.8, DragonFly up to 1.2, and Linux up to 2.6.15 allows root users to bypass immutable settings for files by mounting another filesystem that masks the immutable files while the system is running.

Published: Dec 31, 2005
Updated: Apr 13, 2023
CVE: CVE-2005-4351
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.3
AV:L/AC:L/Au:S/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
linux / linux_kernel	-	2.6.15.x
openbsd / openbsd	-	3.8.x
dragonfly / dragonfly	-	1.2.x
freebsd / freebsd	-	6.0.x
freebsd / freebsd	7.0-current	7.0-current.x

http://archives.neohapsis.com/archives/openbsd/2005-10/1523.html
http://lists.grok.org.uk/pipermail/full-disclosure/2006-January/041177.html
http://www.redteam-pentesting.de/advisories/rt-sa-2005-015.txt
http://www.redteam-pentesting.de/advisories/rt-sa-2005-15.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/24037

Vulnerability Database

289,599

CVE-2005-4351