Lucene search

[email protected]CVE-2007-6151

HistoryDec 15, 2007 - 1:46 a.m.

CVE-2007-6151

2007-12-1501:46:00

CWE-119

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

linux

kernel

2.6.23

isdn_ioctl

denial of service

vulnerability

4.9 Medium

AI Score

Confidence

High

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

9.5%

JSON

The isdn_ioctl function in isdn_common.c in Linux kernel 2.6.23 allows local users to cause a denial of service via a crafted ioctl struct in which iocts is not null terminated, which triggers a buffer overflow.

CPENameOperatorVersion
linux:linux_kernellinux linux kerneleq2.6.23

CPE	Name	Operator	Version
linux:linux_kernel	linux linux kernel	eq	2.6.23

References

git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=eafe1aa37e6ec2d56f14732b5240c4dd09f0613a

lists.opensuse.org/opensuse-security-announce/2008-02/msg00005.html

lists.opensuse.org/opensuse-security-announce/2008-03/msg00007.html

lists.opensuse.org/opensuse-security-announce/2008-07/msg00002.html

lists.vmware.com/pipermail/security-announce/2008/000023.html

rhn.redhat.com/errata/RHSA-2008-0055.html

secunia.com/advisories/28626

secunia.com/advisories/28706

secunia.com/advisories/28748

secunia.com/advisories/28889

secunia.com/advisories/28971

secunia.com/advisories/29058

secunia.com/advisories/29570

secunia.com/advisories/30110

secunia.com/advisories/30962

secunia.com/advisories/31246

secunia.com/advisories/33280

www.debian.org/security/2008/dsa-1479

www.debian.org/security/2008/dsa-1503

www.debian.org/security/2008/dsa-1504

www.mandriva.com/security/advisories?name=MDVSA-2008:086

www.mandriva.com/security/advisories?name=MDVSA-2008:112

www.redhat.com/support/errata/RHSA-2008-0211.html

www.redhat.com/support/errata/RHSA-2008-0787.html

www.securityfocus.com/bid/27497

www.ubuntu.com/usn/usn-574-1

www.ubuntu.com/usn/usn-578-1

www.vupen.com/english/advisories/2008/2222/references

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10971

4.9 Medium

AI Score

Confidence

High

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

9.5%

JSON

Related for CVE-2007-6151

prion1 ubuntucve1 nessus19 suse3 openvas38 debian4 osv4 redhat4 oraclelinux3 centos3 vmware2 ubuntu2