CVE-2005-4352

Currently unrated

Key Information:

Vendor: Linux
Status: Linux Kernel; Netbsd
Vendor: CVE Published:; 31 December 2005

Summary

The securelevels implementation in NetBSD 2.1 and earlier, and Linux 2.6.15 and earlier, allows local users to bypass time setting restrictions and set the clock backwards by setting the clock ahead to the maximum unixtime value (19 Jan 2038), which then wraps around to the minimum value (13 Dec 1901), which can then be set ahead to the desired time, aka "settimeofday() time wrap."

References

http://www.securityfocus.com/archive/1/421426/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://lists.grok.org.uk/pipermail/full-disclosure/2006-J...

mailing-listx_refsource_FULLDISC

http://www.redteam-pentesting.de/advisories/rt-sa-2005-16...

x_refsource_MISC

Timeline

Vulnerability published
Dec 31, 2005
Vulnerability Reserved
Dec 19, 2005

Collectors

NVD DatabaseMitre Database