CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
89.9%
Buffer overflow in the bufprint function in capiutil.c in libcapi, as used in Linux kernel 2.6.9 to 2.6.20 and isdn4k-utils, allows local users to cause a denial of service (crash) and possibly gain privileges via a crafted CAPI packet.
Vendor | Product | Version | CPE |
---|---|---|---|
linux | linux_kernel | 2.6.9 | cpe:2.3:o:linux:linux_kernel:2.6.9:*:*:*:*:*:*:* |
linux | linux_kernel | 2.6.10 | cpe:2.3:o:linux:linux_kernel:2.6.10:*:*:*:*:*:*:* |
linux | linux_kernel | 2.6.10 | cpe:2.3:o:linux:linux_kernel:2.6.10:rc1:*:*:*:*:*:* |
linux | linux_kernel | 2.6.10 | cpe:2.3:o:linux:linux_kernel:2.6.10:rc2:*:*:*:*:*:* |
linux | linux_kernel | 2.6.10 | cpe:2.3:o:linux:linux_kernel:2.6.10:rc3:*:*:*:*:*:* |
linux | linux_kernel | 2.6.11 | cpe:2.3:o:linux:linux_kernel:2.6.11:*:*:*:*:*:*:* |
linux | linux_kernel | 2.6.11 | cpe:2.3:o:linux:linux_kernel:2.6.11:*:x86_64:*:*:*:*:* |
linux | linux_kernel | 2.6.11 | cpe:2.3:o:linux:linux_kernel:2.6.11:rc1:*:*:*:*:*:* |
linux | linux_kernel | 2.6.11 | cpe:2.3:o:linux:linux_kernel:2.6.11:rc2:*:*:*:*:*:* |
linux | linux_kernel | 2.6.11 | cpe:2.3:o:linux:linux_kernel:2.6.11:rc3:*:*:*:*:*:* |
bugs.debian.org/cgi-bin/bugreport.cgi?bug=408530
bugzilla.kernel.org/show_bug.cgi?id=8028
osvdb.org/34742
secunia.com/advisories/24777
secunia.com/advisories/26379
secunia.com/advisories/26478
secunia.com/advisories/26709
secunia.com/advisories/26760
secunia.com/advisories/27528
security.gentoo.org/glsa/glsa-200704-23.xml
support.avaya.com/elmodocs2/security/ASA-2007-404.htm
www.mandriva.com/security/advisories?name=MDKSA-2007:078
www.redhat.com/support/errata/RHSA-2007-0671.html
www.redhat.com/support/errata/RHSA-2007-0672.html
www.redhat.com/support/errata/RHSA-2007-0673.html
www.redhat.com/support/errata/RHSA-2007-0705.html
www.redhat.com/support/errata/RHSA-2007-0774.html
www.securityfocus.com/bid/23333
www.securitytracker.com/id?1018539
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10503