CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS
Percentile
5.1%
The ia64 subsystem in the Linux kernel before 2.6.26 allows local users to
cause a denial of service (stack consumption and system crash) via a
crafted application that leverages the mishandling of invalid Register
Stack Engine (RSE) state.
Author | Note |
---|---|
mdeslaur | ancient issue, and ia64 |
ftp.naist.jp/pub/linux/kernel/v2.6/ChangeLog-2.6.26
git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=4dcc29e1574d88f4465ba865ed82800032f76418
bugzilla.suse.com/show_bug.cgi?id=199440
github.com/torvalds/linux/commit/4dcc29e1574d88f4465ba865ed82800032f76418
launchpad.net/bugs/cve/CVE-2006-3635
nvd.nist.gov/vuln/detail/CVE-2006-3635
security-tracker.debian.org/tracker/CVE-2006-3635
www.cve.org/CVERecord?id=CVE-2006-3635
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS
Percentile
5.1%