Lucene search

K
cve[email protected]CVE-2009-0065
HistoryJan 07, 2009 - 7:30 p.m.

CVE-2009-0065

2009-01-0719:30:00
CWE-119
web.nvd.nist.gov
248
9
cve-2009-0065
buffer overflow
sctp
linux kernel
net/sctp/sm_statefuns.c
nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

5.9 Medium

AI Score

Confidence

High

0.949 High

EPSS

Percentile

99.3%

Buffer overflow in net/sctp/sm_statefuns.c in the Stream Control Transmission Protocol (sctp) implementation in the Linux kernel before 2.6.28-git8 allows remote attackers to have an unknown impact via an FWD-TSN (aka FORWARD-TSN) chunk with a large stream ID.

Affected configurations

NVD
Node
linuxlinux_kernelRange2.6.27
OR
linuxlinux_kernelMatch2.2.27
OR
linuxlinux_kernelMatch2.4.36
OR
linuxlinux_kernelMatch2.4.36.1
OR
linuxlinux_kernelMatch2.4.36.2
OR
linuxlinux_kernelMatch2.4.36.3
OR
linuxlinux_kernelMatch2.4.36.4
OR
linuxlinux_kernelMatch2.4.36.5
OR
linuxlinux_kernelMatch2.4.36.6
OR
linuxlinux_kernelMatch2.6
OR
linuxlinux_kernelMatch2.6.18
OR
linuxlinux_kernelMatch2.6.18rc1
OR
linuxlinux_kernelMatch2.6.18rc2
OR
linuxlinux_kernelMatch2.6.18rc3
OR
linuxlinux_kernelMatch2.6.18rc4
OR
linuxlinux_kernelMatch2.6.18rc5
OR
linuxlinux_kernelMatch2.6.18rc6
OR
linuxlinux_kernelMatch2.6.18rc7
OR
linuxlinux_kernelMatch2.6.19.4
OR
linuxlinux_kernelMatch2.6.19.5
OR
linuxlinux_kernelMatch2.6.19.6
OR
linuxlinux_kernelMatch2.6.19.7
OR
linuxlinux_kernelMatch2.6.20.16
OR
linuxlinux_kernelMatch2.6.20.17
OR
linuxlinux_kernelMatch2.6.20.18
OR
linuxlinux_kernelMatch2.6.20.19
OR
linuxlinux_kernelMatch2.6.20.20
OR
linuxlinux_kernelMatch2.6.20.21
OR
linuxlinux_kernelMatch2.6.21.5
OR
linuxlinux_kernelMatch2.6.21.6
OR
linuxlinux_kernelMatch2.6.21.7
OR
linuxlinux_kernelMatch2.6.22
OR
linuxlinux_kernelMatch2.6.22.1
OR
linuxlinux_kernelMatch2.6.22.2
OR
linuxlinux_kernelMatch2.6.22.8
OR
linuxlinux_kernelMatch2.6.22.9
OR
linuxlinux_kernelMatch2.6.22.10
OR
linuxlinux_kernelMatch2.6.22.11
OR
linuxlinux_kernelMatch2.6.22.12
OR
linuxlinux_kernelMatch2.6.22.13
OR
linuxlinux_kernelMatch2.6.22.14
OR
linuxlinux_kernelMatch2.6.22.15
OR
linuxlinux_kernelMatch2.6.22.17
OR
linuxlinux_kernelMatch2.6.22.18
OR
linuxlinux_kernelMatch2.6.22.19
OR
linuxlinux_kernelMatch2.6.22.20
OR
linuxlinux_kernelMatch2.6.22.21
OR
linuxlinux_kernelMatch2.6.22.22
OR
linuxlinux_kernelMatch2.6.22_rc1
OR
linuxlinux_kernelMatch2.6.22_rc7
OR
linuxlinux_kernelMatch2.6.23
OR
linuxlinux_kernelMatch2.6.23.8
OR
linuxlinux_kernelMatch2.6.23.9
OR
linuxlinux_kernelMatch2.6.23.10
OR
linuxlinux_kernelMatch2.6.23.11
OR
linuxlinux_kernelMatch2.6.23.12
OR
linuxlinux_kernelMatch2.6.23.13
OR
linuxlinux_kernelMatch2.6.23.15
OR
linuxlinux_kernelMatch2.6.23.16
OR
linuxlinux_kernelMatch2.6.23.17
OR
linuxlinux_kernelMatch2.6.23_rc1
OR
linuxlinux_kernelMatch2.6.24
OR
linuxlinux_kernelMatch2.6.24.1
OR
linuxlinux_kernelMatch2.6.24.2
OR
linuxlinux_kernelMatch2.6.24.3
OR
linuxlinux_kernelMatch2.6.24.4
OR
linuxlinux_kernelMatch2.6.24.5
OR
linuxlinux_kernelMatch2.6.24.6
OR
linuxlinux_kernelMatch2.6.24.7
OR
linuxlinux_kernelMatch2.6.24_rc1
OR
linuxlinux_kernelMatch2.6.24_rc4
OR
linuxlinux_kernelMatch2.6.24_rc5
OR
linuxlinux_kernelMatch2.6.25
OR
linuxlinux_kernelMatch2.6.25x86_64
OR
linuxlinux_kernelMatch2.6.25.1
OR
linuxlinux_kernelMatch2.6.25.1x86_64
OR
linuxlinux_kernelMatch2.6.25.2
OR
linuxlinux_kernelMatch2.6.25.2x86_64
OR
linuxlinux_kernelMatch2.6.25.3
OR
linuxlinux_kernelMatch2.6.25.3x86_64
OR
linuxlinux_kernelMatch2.6.25.4
OR
linuxlinux_kernelMatch2.6.25.4x86_64
OR
linuxlinux_kernelMatch2.6.25.5
OR
linuxlinux_kernelMatch2.6.25.5x86_64
OR
linuxlinux_kernelMatch2.6.25.6
OR
linuxlinux_kernelMatch2.6.25.6x86_64
OR
linuxlinux_kernelMatch2.6.25.7
OR
linuxlinux_kernelMatch2.6.25.7x86_64
OR
linuxlinux_kernelMatch2.6.25.8
OR
linuxlinux_kernelMatch2.6.25.8x86_64
OR
linuxlinux_kernelMatch2.6.25.9
OR
linuxlinux_kernelMatch2.6.25.9x86_64
OR
linuxlinux_kernelMatch2.6.25.10
OR
linuxlinux_kernelMatch2.6.25.10x86_64
OR
linuxlinux_kernelMatch2.6.25.11
OR
linuxlinux_kernelMatch2.6.25.11x86_64
OR
linuxlinux_kernelMatch2.6.25.12
OR
linuxlinux_kernelMatch2.6.25.12x86_64
OR
linuxlinux_kernelMatch2.6.25.13
OR
linuxlinux_kernelMatch2.6.25.14
OR
linuxlinux_kernelMatch2.6.25.15
OR
linuxlinux_kernelMatch2.6.25.16
OR
linuxlinux_kernelMatch2.6.25.17
OR
linuxlinux_kernelMatch2.6.26
OR
linuxlinux_kernelMatch2.6.26.1
OR
linuxlinux_kernelMatch2.6.26.2
OR
linuxlinux_kernelMatch2.6.26.3
OR
linuxlinux_kernelMatch2.6.26.4
OR
linuxlinux_kernelMatch2.6.26.5

References

Social References

More

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

5.9 Medium

AI Score

Confidence

High

0.949 High

EPSS

Percentile

99.3%