Lucene search

K
cve[email protected]CVE-2005-3806
HistoryNov 25, 2005 - 9:03 p.m.

CVE-2005-3806

2005-11-2521:03:00
CWE-399
web.nvd.nist.gov
38
ipv6
flow label
linux kernels
kernel memory corruption
denial of service
nvd
cve-2005-3806

6.1 Medium

AI Score

Confidence

Low

6.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:C/A:C

0.001 Low

EPSS

Percentile

24.7%

The IPv6 flow label handling code (ip6_flowlabel.c) in Linux kernels 2.4 up to 2.4.32 and 2.6 before 2.6.14 modifies the wrong variable in certain circumstances, which allows local users to corrupt kernel memory or cause a denial of service (crash) by triggering a free of non-allocated memory.

References

6.1 Medium

AI Score

Confidence

Low

6.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:C/A:C

0.001 Low

EPSS

Percentile

24.7%

Related for CVE-2005-3806