Lucene search

[email protected]NVD:CVE-2006-7051

HistoryFeb 24, 2007 - 12:28 a.m.

CVE-2006-7051

2007-02-2400:28:00

[email protected]

web.nvd.nist.gov

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

6.4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.8%

JSON

The sys_timer_create function in posix-timers.c for Linux kernel 2.6.x allows local users to cause a denial of service (memory consumption) and possibly bypass memory limits or cause other processes to be killed by creating a large number of posix timers, which are allocated in kernel memory but are not treated as part of the process’ memory.

Affected configurations

NVD

Node

linuxlinux_kernelMatch2.6.18.0

linuxlinux_kernelMatch2.6.18.1

linuxlinux_kernelMatch2.6.18.2

linuxlinux_kernelMatch2.6.18.3

linuxlinux_kernelMatch2.6.18.4

linuxlinux_kernelMatch2.6.18.5

linuxlinux_kernelMatch2.6.18.6

linuxlinux_kernelMatch2.6.18.7

linuxlinux_kernelMatch2.6.19

linuxlinux_kernelMatch2.6.19.1

linuxlinux_kernelMatch2.6.19.2

linuxlinux_kernelMatch2.6.19.3

linuxlinux_kernelMatch2.6.19.4

linuxlinux_kernelMatch2.6.20

linuxlinux_kernelMatch2.6.20.1

References

securityreason.com/securityalert/2287

www.securityfocus.com/archive/1/430278/30/5790/threaded

exchange.xforce.ibmcloud.com/vulnerabilities/25712

www.exploit-db.com/exploits/1657

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

6.4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.8%

JSON

Related for NVD:CVE-2006-7051

cve1 ubuntucve1 redhatcve1 cvelist1