CVE-2005-0750

Linux Kernel <2.6.11.5 - Privilege Escalation

Title source: llm

Description

The bluez_sock_create function in the Bluetooth stack for Linux kernel 2.4.6 through 2.4.30-rc1 and 2.6 through 2.6.11.5 allows local users to gain privileges via (1) socket or (2) socketpair call with a negative protocol value.

Exploits (4)

exploitdb WORKING POC VERIFIED

by backdoored.net · clocallinux

https://www.exploit-db.com/exploits/25289

View Code ZIP pw:eip

exploitdb STUB VERIFIED

by ilja van sprundel · cdoslinux

https://www.exploit-db.com/exploits/25287

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by qobaiashi · clocallinux

https://www.exploit-db.com/exploits/25288

View Code ZIP pw:eip

exploitdb WORKING POC

clocallinux

https://www.exploit-db.com/exploits/926

View on exploitdb

References (10)

[Vendor Advisory] http://lists.grok.org.uk/pipermail/full-disclosure/2005-March/032913.html

[Mailing List] http://marc.info/?l=bugtraq&m=111204562102633&w=2

[Patch, Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2005-283.html

[Patch, Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2005-284.html

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2005-293.html

[Issue Tracking] https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=152532

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/19844

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11719

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2005-366.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/12911

Scores

EPSS 0.0060

EPSS Percentile 69.0%

Classification

Status draft

Affected Products (50)

conectiva/linux

linux/linux_kernel

... and 35 more

Timeline

Published Mar 27, 2005

Tracked Since Feb 18, 2026