7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.018 Low
EPSS
Percentile
87.9%
drivers/net/e1000/e1000_main.c in the e1000 driver in the Linux kernel
2.6.32.3 and earlier handles Ethernet frames that exceed the MTU by
processing certain trailing payload data as if it were a complete frame,
which allows remote attackers to bypass packet filters via a large packet
with a crafted payload. NOTE: this vulnerability exists because of an
incorrect fix for CVE-2009-1385.