CVE-2010-0437

2010-03-2413:34:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2010-0437

linux kernel

ip6_dst_lookup_tail

net/ipv6/ip6_output.c

denial of service

null pointer dereference

oops

ipv6

tun network interface

nvd

6.8 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.046 Low

EPSS

Percentile

92.5%

JSON

The ip6_dst_lookup_tail function in net/ipv6/ip6_output.c in the Linux kernel before 2.6.27 does not properly handle certain circumstances involving an IPv6 TUN network interface and a large number of neighbors, which allows attackers to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact via unknown vectors.

CPENameOperatorVersion
linux:linux_kernellinux linux kerneleq2.6.20.6
linux:linux_kernellinux linux kerneleq2.6.17
linux:linux_kernellinux linux kerneleq2.6.20.9
linux:linux_kernellinux linux kerneleq2.6.18
linux:linux_kernellinux linux kerneleq2.6.11
linux:linux_kernellinux linux kerneleq2.6.23.4
linux:linux_kernellinux linux kerneleq2.6.22.15
linux:linux_kernellinux linux kerneleq2.6.16.16
linux:linux_kernellinux linux kerneleq2.6.18.7
linux:linux_kernellinux linux kerneleq2.6.17.12

CPE	Name	Operator	Version
linux:linux_kernel	linux linux kernel	eq	2.6.20.6
linux:linux_kernel	linux linux kernel	eq	2.6.17
linux:linux_kernel	linux linux kernel	eq	2.6.20.9
linux:linux_kernel	linux linux kernel	eq	2.6.18
linux:linux_kernel	linux linux kernel	eq	2.6.11
linux:linux_kernel	linux linux kernel	eq	2.6.23.4
linux:linux_kernel	linux linux kernel	eq	2.6.22.15
linux:linux_kernel	linux linux kernel	eq	2.6.16.16
linux:linux_kernel	linux linux kernel	eq	2.6.18.7
linux:linux_kernel	linux linux kernel	eq	2.6.17.12