Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2005-0666 — PAX Team PAX Linux vulnerability

4 documents4 sources
Severity
4.6MEDIUMNVD
EPSS
0.5%
top 33.37%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
THE PAX Team PAX Linux
Timeline
PublishedMay 2
Latest updateMay 1

Description

Unknown vulnerability in PaX from the September 2003 release to 2.2 before 2005.03.05, related to SEGMEXEC or RANDEXEC and VMA mirroring, allows local users and possibly remote attackers to bypass intended access restrictions and execute arbitrary code.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages1 packages

â–¶NVDthe_pax_team/pax_linux11 versions+10

🔴Vulnerability Details

2
GHSA
GHSA-w28g-m5hq-8r6c: Unknown vulnerability in PaX from the September 2003 release to 2↗2022-05-01
â–¶
CVEList
CVE-2005-0666: Unknown vulnerability in PaX from the September 2003 release to 2↗2005-03-07
â–¶

💥Exploits & PoCs

1
Exploit-DB
PaX - Double-Mirrored VMA munmap Privilege Escalation↗2005-03-14
â–¶
CVE-2005-0666 — THE PAX Team PAX Linux vulnerability | cvebase