Lucene search

K
ubuntucveUbuntu.comUB:CVE-2009-0065
HistoryJan 07, 2009 - 12:00 a.m.

CVE-2009-0065

2009-01-0700:00:00
ubuntu.com
ubuntu.com
32

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.948

Percentile

99.3%

Buffer overflow in net/sctp/sm_statefuns.c in the Stream Control
Transmission Protocol (sctp) implementation in the Linux kernel before
2.6.28-git8 allows remote attackers to have an unknown impact via an
FWD-TSN (aka FORWARD-TSN) chunk with a large stream ID.

OSVersionArchitecturePackageVersionFilename
ubuntu8.04noarchlinux< 2.6.24-23.52UNKNOWN
ubuntu8.10noarchlinux< 2.6.27-11.31UNKNOWN
ubuntu6.06noarchlinux-source-2.6.15< 2.6.15-54.76UNKNOWN
ubuntu7.10noarchlinux-source-2.6.22< 2.6.22-16.62UNKNOWN

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.948

Percentile

99.3%