Null pointer dereference

2014-09-2810:55:00

PRIOn knowledge base

www.prio-n.com

7.6 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.01 Low

EPSS

Percentile

83.5%

JSON

The SMB2_tcon function in fs/cifs/smb2pdu.c in the Linux kernel before 3.16.3 allows remote CIFS servers to cause a denial of service (NULL pointer dereference and client system crash) or possibly have unspecified other impact by deleting the IPC$ share during resolution of DFS referrals.

CPENameOperatorVersion
ubuntu_linuxeq12.04
linux_kernelge3.11
linux_kernellt3.12.29
linux_kernelge3.13
linux_kernellt3.14.19
linux_kernelge3.15
linux_kernellt3.16.3
linux_kernelge3.6
linux_kernellt3.10.55
enterprise_linux_desktopeq7.0

Name	Operator	Version
ubuntu_linux	eq	12.04
linux_kernel	ge	3.11
linux_kernel	lt	3.12.29
linux_kernel	ge	3.13
linux_kernel	lt	3.14.19
linux_kernel	ge	3.15
linux_kernel	lt	3.16.3
linux_kernel	ge	3.6
linux_kernel	lt	3.10.55
enterprise_linux_desktop	eq	7.0