Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2008-2358
HistoryJun 10, 2008 - 12:32 a.m.

CVE-2008-2358

2008-06-1000:32:00
CWE-189
[email protected]
web.nvd.nist.gov
42
cve-2008-2358
linux kernel
dccp
integer overflow
buffer overflow
nvd
security vulnerability

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.3 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

10.1%

JSON

Integer overflow in the dccp_feat_change function in net/dccp/feat.c in the Datagram Congestion Control Protocol (DCCP) subsystem in the Linux kernel 2.6.18, and 2.6.17 through 2.6.20, allows local users to gain privileges via an invalid feature length, which leads to a heap-based buffer overflow.

Affected configurations

NVD
Node
linuxlinux_kernelMatch2.6.17
OR
linuxlinux_kernelMatch2.6.18
OR
linuxlinux_kernelMatch2.6.19
OR
linuxlinux_kernelMatch2.6.20

Related

prion 1
nvd 1
ubuntucve 1
cvelist 1
seebug 1
veracode 1
openvas 16
osv 1
fedora 2
debian 2
securityvulns 2
nessus 11
redhat 1
centos 1
oraclelinux 2
ubuntu 1
suse 1
prion
prion
Integer overflow
2008-06-10 00:32:00
nvd
nvd
CVE-2008-2358
2008-06-10 00:32:00
ubuntucve
ubuntucve
CVE-2008-2358
2008-06-10 00:00:00
cvelist
cvelist
CVE-2008-2358
2008-06-10 00:00:00
seebug
seebug
Linux Kernel DCCPε­η³»η»ŸηΌ“ε†²εŒΊζΊ’ε‡ΊζΌζ΄ž
2008-06-12 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:22:55
openvas
openvas
Debian Security Advisory DSA 1592-1 (linux-2.6)
2008-06-11 00:00:00
Fedora Update for kernel FEDORA-2008-5893
2009-02-17 00:00:00
Fedora Update for kernel FEDORA-2008-5893
2009-02-17 00:00:00
osv
osv
linux-2.6 - overflow conditions
2008-06-09 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: kernel-2.6.25.9-76.fc9
2008-07-02 06:35:04
[SECURITY] Fedora 9 Update: kernel-2.6.25.9-76.fc9
2008-07-04 03:40:41
debian
debian
[SECURITY] [DSA 1592-2] New Linux 2.6.18 packages fix overflow conditions
2008-06-09 17:15:28
[SECURITY] [DSA 1592-1] New Linux 2.6.18 packages fix overflow conditions
2008-06-09 06:37:30
securityvulns
securityvulns
Linux kernel multiple security vulnerabilities
2008-06-09 00:00:00
[SECURITY] [DSA 1592-1] New Linux 2.6.18 packages fix overflow conditions
2008-06-09 00:00:00
nessus
nessus
Debian DSA-1592-1 : linux-2.6 - heap overflow
2008-06-16 00:00:00
Fedora 9 : kernel-2.6.25.9-76.fc9 (2008-5893)
2008-07-08 00:00:00
CentOS 5 : kernel (CESA-2008:0519)
2010-01-06 00:00:00
redhat
redhat
(RHSA-2008:0519) Important: kernel security and bug fix update
2008-06-25 00:00:00
centos
centos
kernel security update
2008-06-26 11:40:24
oraclelinux
oraclelinux
kernel security and bug fix update
2008-06-26 00:00:00
Oracle Enterprise Linux 5.3 kernel security and bug fix update
2009-01-27 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2008-07-15 00:00:00
suse
suse
remote denial of service in kernel
2008-06-20 16:05:15

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.3 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

10.1%

JSON
Related for CVE-2008-2358
prion1nvd1ubuntucve1cvelist1seebug1veracode1openvas16osv1fedora2debian2securityvulns2nessus11redhat1centos1oraclelinux2ubuntu1suse1