Lucene search

K
nvdBc94ec7e-8909-4cbb-83df-d2fc9330fa88NVD:CVE-2006-1342
HistoryMar 21, 2006 - 6:02 p.m.

CVE-2006-1342

2006-03-2118:02:00
bc94ec7e-8909-4cbb-83df-d2fc9330fa88
web.nvd.nist.gov
8

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

AI Score

5.7

Confidence

Low

EPSS

0

Percentile

0.4%

net/ipv4/af_inet.c in Linux kernel 2.4 does not clear sockaddr_in.sin_zero before returning IPv4 socket names from the (1) getsockname, (2) getpeername, and (3) accept functions, which allows local users to obtain portions of potentially sensitive memory.

Affected configurations

Nvd
Node
linuxlinux_kernelMatch2.4.0
VendorProductVersionCPE
linuxlinux_kernel2.4.0cpe:2.3:o:linux:linux_kernel:2.4.0:*:*:*:*:*:*:*

References

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

AI Score

5.7

Confidence

Low

EPSS

0

Percentile

0.4%