CVE-2004-1235

Linux kernel <2.6.11 - RCE

Title source: llm

Description

Race condition in the (1) load_elf_library and (2) binfmt_aout function calls for uselib in Linux kernel 2.4 through 2.429-rc2 and 2.6 through 2.6.10 allows local users to execute arbitrary code by manipulating the VMA descriptor.

Exploits (3)

exploitdb WORKING POC VERIFIED
by sd · clocallinux
https://www.exploit-db.com/exploits/895
exploitdb WORKING POC VERIFIED
by Tim Hsu · clocallinux
https://www.exploit-db.com/exploits/778
exploitdb WORKING POC VERIFIED
by Paul Starzetz · clocallinux
https://www.exploit-db.com/exploits/744

References (25)

... and 5 more

Scores

EPSS 0.0008
EPSS Percentile 24.2%

Details

Status published
Products (34)
avaya/converged_communications_server 2.0
avaya/intuity_audix
avaya/mn100
avaya/modular_messaging_message_storage_server 1.1
avaya/modular_messaging_message_storage_server 2.0
avaya/network_routing
avaya/s8300 r2.0.0
avaya/s8300 r2.0.1
avaya/s8500 r2.0.0
avaya/s8500 r2.0.1
... and 24 more
Published Apr 14, 2005
Tracked Since Feb 18, 2026