CVE-2005-4798

2005-12-3105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2005-4798

buffer overflow

nfs

linux kernel

denial of service

crash

6.6 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.098 Low

EPSS

Percentile

94.7%

JSON

Buffer overflow in NFS readlink handling in the Linux Kernel 2.4 up to 2.4.31 allows remote NFS servers to cause a denial of service (crash) via a long symlink, which is not properly handled in (1) nfs2xdr.c or (2) nfs3xdr.c and causes a crash in the NFS client.

CPENameOperatorVersion
linux:linux_kernellinux linux kerneleq2.4.18
linux:linux_kernellinux linux kerneleq2.4.15
linux:linux_kernellinux linux kerneleq2.4.30
linux:linux_kernellinux linux kerneleq2.4.0
linux:linux_kernellinux linux kerneleq2.4.11
linux:linux_kernellinux linux kerneleq2.4.27
linux:linux_kernellinux linux kerneleq2.4.26
linux:linux_kernellinux linux kerneleq2.4.19
linux:linux_kernellinux linux kerneleq2.4.21
linux:linux_kernellinux linux kerneleq2.4.12

CPE	Name	Operator	Version
linux:linux_kernel	linux linux kernel	eq	2.4.18
linux:linux_kernel	linux linux kernel	eq	2.4.15
linux:linux_kernel	linux linux kernel	eq	2.4.30
linux:linux_kernel	linux linux kernel	eq	2.4.0
linux:linux_kernel	linux linux kernel	eq	2.4.11
linux:linux_kernel	linux linux kernel	eq	2.4.27
linux:linux_kernel	linux linux kernel	eq	2.4.26
linux:linux_kernel	linux linux kernel	eq	2.4.19
linux:linux_kernel	linux linux kernel	eq	2.4.21
linux:linux_kernel	linux linux kernel	eq	2.4.12