Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2005-4881
HistoryOct 19, 2009 - 12:00 a.m.

CVE-2005-4881

2009-10-1900:00:00
ubuntu.com
ubuntu.com
9

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

0.0004 Low

EPSS

Percentile

9.3%

JSON

The netlink subsystem in the Linux kernel 2.4.x before 2.4.37.6 and 2.6.x
before 2.6.13-rc1 does not initialize certain padding fields in structures,
which might allow local users to obtain sensitive information from kernel
memory via unspecified vectors, related to the (1) tc_fill_qdisc, (2)
tcf_fill_node, (3) neightbl_fill_info, (4) neightbl_fill_param_info, (5)
neigh_fill_info, (6) rtnetlink_fill_ifinfo, (7) rtnetlink_fill_iwinfo, (8)
vif_delete, (9) ipmr_destroy_unres, (10) ipmr_cache_alloc_unres, (11)
ipmr_cache_resolve, (12) inet6_fill_ifinfo, (13) tca_get_fill, (14)
tca_action_flush, (15) tcf_add_notify, (16) tc_dump_action, (17)
cbq_dump_police, (18) __nlmsg_put, (19) __rta_fill, (20) __rta_reserve,
(21) inet6_fill_prefix, (22) rsvp_dump, and (23) cbq_dump_ovl functions.

Related

cve 2
openvas 12
ubuntucve 1
nessus 11
prion 1
oraclelinux 1
redhat 1
centos 1
suse 3
cve
cve
CVE-2005-4881
2009-10-19 20:00:00
CVE-2009-3612
2009-10-19 20:00:00
openvas
openvas
CentOS Security Advisory CESA-2009:1522 (kernel)
2009-10-27 00:00:00
CentOS Security Advisory CESA-2009:1522 (kernel)
2009-10-27 00:00:00
CentOS Update for kernel CESA-2009:1522 centos4 i386
2011-08-09 00:00:00
ubuntucve
ubuntucve
CVE-2009-3612
2009-10-19 00:00:00
nessus
nessus
Scientific Linux Security Update : kernel on SL4.x i386/x86_64
2012-08-01 00:00:00
CentOS 4 : kernel (CESA-2009:1522)
2009-10-27 00:00:00
RHEL 4 : kernel (RHSA-2009:1522)
2009-10-23 00:00:00
prion
prion
Code injection
2009-10-19 20:00:00
oraclelinux
oraclelinux
kernel security and bug fix update
2009-10-22 00:00:00
redhat
redhat
(RHSA-2009:1522) Moderate: kernel security and bug fix update
2009-10-22 00:00:00
centos
centos
kernel security update
2009-10-26 14:31:26
suse
suse
remote denial of service in kernel
2009-12-02 17:15:31
remote denial of service in kernel
2009-12-14 18:08:07
remote denial of service in kernel
2009-12-22 18:28:49

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

0.0004 Low

EPSS

Percentile

9.3%

JSON
Related for UB:CVE-2005-4881
cve2openvas12ubuntucve1nessus11prion1oraclelinux1redhat1centos1suse3