Lucene search

MitreCVE-2004-0592

HistoryJan 23, 2006 - 8:00 p.m.

CVE-2004-0592

2006-01-2320:00:00

mitre

web.nvd.nist.gov

cve-2004-0592

denial of service

suse linux

netfilter subsystem

ipv6

usagi patches

iptables

tcp options rules

cpu consumption

infinite loop

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.5

Confidence

High

EPSS

0.013

Percentile

85.9%

JSON

The tcp_find_option function of the netfilter subsystem for IPv6 in the SUSE Linux 2.6.5 kernel with USAGI patches, when using iptables and TCP options rules, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a large option length that produces a negative integer after a casting operation to the char type, a similar flaw to CVE-2004-0626.

Affected configurations

Nvd

Node

susesuse_linuxMatch2.6.5

VendorProductVersionCPE
susesuse_linux2.6.5cpe:2.3:o:suse:suse_linux:2.6.5:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
suse	suse_linux	2.6.5	cpe:2.3:o:suse:suse_linux:2.6.5:::::::*

References

lists.grok.org.uk/pipermail/full-disclosure/2004-July/023408.html

www.novell.com/linux/security/advisories/2004_20_kernel.html

exchange.xforce.ibmcloud.com/vulnerabilities/43137

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.5

Confidence

High

EPSS

0.013

Percentile

85.9%

JSON

Related for CVE-2004-0592