CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
EPSS
Percentile
98.8%
Memory leak in the ipip6_rcv function in net/ipv6/sit.c in the Linux kernel
2.4 before 2.4.36.5 and 2.6 before 2.6.25.3 allows remote attackers to
cause a denial of service (memory consumption) via network traffic to a
Simple Internet Transition (SIT) tunnel interface, related to the
pskb_may_pull and kfree_skb functions, and management of an skb reference
count.