2 matches found
SUSE CVE-2006-1368
Buffer overflow in the USB Gadget RNDIS implementation in the Linux kernel before 2.6.16 allows remote attackers to cause a denial of service kmalloc'd memory corruption via a remote NDIS response to OIDGENSUPPORTEDLIST, which causes memory to be allocated for the reply data but not the reply...
ASB-A-162326603
In rndissetresponse of rndis.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...