Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2006-2934
HistoryJun 30, 2006 - 9:05 p.m.

CVE-2006-2934

2006-06-3021:05:00
CWE-399
[email protected]
web.nvd.nist.gov
31
cve-2006-2934
sctp
conntrack
netfilter
linux kernel
denial of service
remote attackers
nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.1 High

AI Score

Confidence

High

0.18 Low

EPSS

Percentile

96.2%

JSON

SCTP conntrack (ip_conntrack_proto_sctp.c) in netfilter for Linux kernel 2.6.17 before 2.6.17.3 and 2.6.16 before 2.6.16.23 allows remote attackers to cause a denial of service (crash) via a packet without any chunks, which causes a variable to contain an invalid value that is later used to dereference a pointer.

Affected configurations

NVD
Node
linuxlinux_kernelMatch2.6.16
OR
linuxlinux_kernelMatch2.6.16.1
OR
linuxlinux_kernelMatch2.6.16.2
OR
linuxlinux_kernelMatch2.6.16.10
OR
linuxlinux_kernelMatch2.6.16.11
OR
linuxlinux_kernelMatch2.6.16.12
OR
linuxlinux_kernelMatch2.6.16.13
OR
linuxlinux_kernelMatch2.6.16.14
OR
linuxlinux_kernelMatch2.6.16.15
OR
linuxlinux_kernelMatch2.6.16.16
OR
linuxlinux_kernelMatch2.6.16.17
OR
linuxlinux_kernelMatch2.6.16.18
OR
linuxlinux_kernelMatch2.6.16.19
OR
linuxlinux_kernelMatch2.6.16.20
OR
linuxlinux_kernelMatch2.6.16.21
OR
linuxlinux_kernelMatch2.6.16.22
OR
linuxlinux_kernelMatch2.6.17
OR
linuxlinux_kernelMatch2.6.17.1
OR
linuxlinux_kernelMatch2.6.17.2

References

Related

checkpoint_advisories 1
prion 1
cert 1
nvd 1
ubuntucve 1
cvelist 1
securityvulns 1
ubuntu 2
openvas 4
nessus 6
suse 2
centos 1
redhat 1
checkpoint_advisories
checkpoint_advisories
Linux Kernel SCTP Chunkless Packet Denial of Service (CVE-2006-2934)
2010-03-04 00:00:00
prion
prion
Null pointer dereference
2006-06-30 21:05:00
cert
cert
Linux kernel fails to properly handle malformed SCTP packets
2006-07-14 00:00:00
nvd
nvd
CVE-2006-2934
2006-06-30 21:05:00
ubuntucve
ubuntucve
CVE-2006-2934
2006-06-30 00:00:00
cvelist
cvelist
CVE-2006-2934
2006-06-30 21:00:00
securityvulns
securityvulns
[Full-disclosure] rPSA-2006-0122-1 kernel
2006-07-12 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2006-08-03 00:00:00
Linux kernel vulnerabilities
2006-09-15 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-331-1)
2022-08-26 00:00:00
Ubuntu: Security Advisory (USN-346-1)
2022-08-26 00:00:00
SLES9: Security update for Linux kernel
2009-10-10 00:00:00
nessus
nessus
Linux SCTP Functionality Multiple Remote DoS
2006-05-09 00:00:00
Ubuntu 6.06 LTS : linux-source-2.6.15 vulnerabilities (USN-331-1)
2007-11-10 00:00:00
Ubuntu 5.04 / 5.10 / 6.06 LTS : linux-source-2.6.10/-2.6.12/-2.6.15 vulnerabilities (USN-346-1)
2007-11-10 00:00:00
suse
suse
local privilege escalation in kernel
2006-08-11 14:25:01
local privilege escalation in kernel
2006-07-26 14:31:45
centos
centos
kernel security update
2006-08-24 00:20:09
redhat
redhat
(RHSA-2006:0575) Updated kernel packages available for Red Hat Enterprise Linux 4 Update 4
2006-08-10 00:00:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.1 High

AI Score

Confidence

High

0.18 Low

EPSS

Percentile

96.2%

JSON
Related for CVE-2006-2934
checkpoint_advisories1prion1cert1nvd1ubuntucve1cvelist1securityvulns1ubuntu2openvas4nessus6suse2centos1redhat1