CVE-2004-0228

Linux kernel <2.6 - Privilege Escalation

Title source: llm

Description

Integer signedness error in the cpufreq proc handler (cpufreq_procctl) in Linux kernel 2.6 allows local users to gain privileges.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Brad Spengler · clocallinux

https://www.exploit-db.com/exploits/24043

View Code ZIP pw:eip

References (11)

[Vendor Advisory] http://security.gentoo.org/glsa/glsa-200407-02.xml

[Mailing List] http://fedoranews.org/updates/FEDORA-2004-111.shtml

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDKSA-2004:050

[Vendor Advisory] http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000852

[Vendor Advisory] http://www.novell.com/linux/security/advisories/2004_10_kernel.html

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/15951

[Third Party Advisory] http://secunia.com/advisories/11429

[Third Party Advisory] http://secunia.com/advisories/11464

[Third Party Advisory] http://secunia.com/advisories/11486

[Third Party Advisory] http://secunia.com/advisories/11491

[Third Party Advisory] http://secunia.com/advisories/11683

Scores

EPSS 0.0019

EPSS Percentile 41.0%

Classification

Status draft

Affected Products (1)

linux/linux_kernel

Timeline

Published Aug 18, 2004

Tracked Since Feb 18, 2026