Lucene search

[email protected]CVE-2007-6151

HistoryDec 15, 2007 - 1:46 a.m.

CVE-2007-6151

2007-12-1501:46:00

CWE-119

[email protected]

web.nvd.nist.gov

linux

kernel

2.6.23

isdn_ioctl

denial of service

vulnerability

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

5.1 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.1%

JSON

The isdn_ioctl function in isdn_common.c in Linux kernel 2.6.23 allows local users to cause a denial of service via a crafted ioctl struct in which iocts is not null terminated, which triggers a buffer overflow.

Affected configurations

NVD

Node

linuxlinux_kernelMatch2.6.23

CPENameOperatorVersion
linux:linux_kernellinux linux kerneleq2.6.23

CPE	Name	Operator	Version
linux:linux_kernel	linux linux kernel	eq	2.6.23

References

git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=eafe1aa37e6ec2d56f14732b5240c4dd09f0613a

lists.opensuse.org/opensuse-security-announce/2008-02/msg00005.html

lists.opensuse.org/opensuse-security-announce/2008-03/msg00007.html

lists.opensuse.org/opensuse-security-announce/2008-07/msg00002.html

lists.vmware.com/pipermail/security-announce/2008/000023.html

rhn.redhat.com/errata/RHSA-2008-0055.html

secunia.com/advisories/28626

secunia.com/advisories/28706

secunia.com/advisories/28748

secunia.com/advisories/28889

secunia.com/advisories/28971

secunia.com/advisories/29058

secunia.com/advisories/29570

secunia.com/advisories/30110

secunia.com/advisories/30962

secunia.com/advisories/31246

secunia.com/advisories/33280

www.debian.org/security/2008/dsa-1479

www.debian.org/security/2008/dsa-1503

www.debian.org/security/2008/dsa-1504

www.mandriva.com/security/advisories?name=MDVSA-2008:086

www.mandriva.com/security/advisories?name=MDVSA-2008:112

www.redhat.com/support/errata/RHSA-2008-0211.html

www.redhat.com/support/errata/RHSA-2008-0787.html

www.securityfocus.com/bid/27497

www.ubuntu.com/usn/usn-574-1

www.ubuntu.com/usn/usn-578-1

www.vupen.com/english/advisories/2008/2222/references

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10971

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

5.1 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.1%

JSON

Related for CVE-2007-6151

prion1 ubuntucve1 cvelist1 nvd1 nessus19 suse3 openvas38 debian4 osv4 redhat4 oraclelinux3 centos3 vmware2 ubuntu2