CVE-2005-3809

2005-11-2521:00:00

mitre

www.cve.org

6.4 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.2%

JSON

The nfattr_to_tcp function in ip_conntrack_proto_tcp.c in ctnetlink in Linux kernel 2.6.14 up to 2.6.14.3 allows attackers to cause a denial of service (kernel oops) via an update message without private protocol information, which triggers a null dereference.