Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveRedhatCVE-2010-2495
HistorySep 08, 2010 - 8:00 p.m.

CVE-2010-2495

2010-09-0820:00:02
CWE-476
redhat
web.nvd.nist.gov
67
7
cve-2010-2495
pppol2tp_xmit
l2tp
linux kernel
security vulnerability
denial of service
null pointer dereference
oops
routing change

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.4

Confidence

High

EPSS

0.011

Percentile

84.6%

JSON

The pppol2tp_xmit function in drivers/net/pppol2tp.c in the L2TP implementation in the Linux kernel before 2.6.34 does not properly validate certain values associated with an interface, which allows attackers to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact via vectors related to a routing change.

Affected configurations

Nvd
Node
linuxlinux_kernelRange<2.6.34
Node
canonicalubuntu_linuxMatch6.06lts
OR
canonicalubuntu_linuxMatch8.04lts
OR
canonicalubuntu_linuxMatch9.04
OR
canonicalubuntu_linuxMatch9.10
OR
canonicalubuntu_linuxMatch10.04lts
OR
canonicalubuntu_linuxMatch10.10
Node
susesuse_linux_enterprise_desktopMatch11sp1
OR
susesuse_linux_enterprise_high_availability_extensionMatch11sp1
OR
susesuse_linux_enterprise_serverMatch11sp1
VendorProductVersionCPE
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
canonicalubuntu_linux6.06cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts:*:*:*
canonicalubuntu_linux8.04cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:lts:*:*:*
canonicalubuntu_linux9.04cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*
canonicalubuntu_linux9.10cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*
canonicalubuntu_linux10.04cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:*
canonicalubuntu_linux10.10cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*
susesuse_linux_enterprise_desktop11cpe:2.3:o:suse:suse_linux_enterprise_desktop:11:sp1:*:*:*:*:*:*
susesuse_linux_enterprise_high_availability_extension11cpe:2.3:o:suse:suse_linux_enterprise_high_availability_extension:11:sp1:*:*:*:*:*:*
susesuse_linux_enterprise_server11cpe:2.3:o:suse:suse_linux_enterprise_server:11:sp1:*:*:*:*:*:*

Social References

More

Related

ubuntucve 1
seebug 1
cvelist 1
prion 1
nvd 1
nessus 6
fedora 2
openvas 12
suse 2
ubuntu 4
ubuntucve
ubuntucve
CVE-2010-2495
2010-09-08 00:00:00
seebug
seebug
Linux kernel 2.6.x L2TP实现远程拒绝服务漏洞
2010-09-14 00:00:00
cvelist
cvelist
CVE-2010-2495
2010-09-08 19:00:00
prion
prion
Null pointer dereference
2010-09-08 20:00:00
nvd
nvd
CVE-2010-2495
2010-09-08 20:00:02
nessus
nessus
SuSE 11.1 Security Update : Linux Kernel (SAT Patch Numbers 2760 / 2763 / 2764)
2011-01-21 00:00:00
Fedora 12 : kernel-2.6.32.16-141.fc12 (2010-10880)
2010-07-14 00:00:00
Fedora 13 : kernel-2.6.33.6-147.fc13 (2010-10876)
2010-07-09 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: kernel-2.6.33.6-147.fc13
2010-07-08 18:24:53
[SECURITY] Fedora 12 Update: kernel-2.6.32.16-141.fc12
2010-07-13 07:49:26
openvas
openvas
Fedora Update for kernel FEDORA-2010-10876
2010-07-12 00:00:00
Fedora Update for kernel FEDORA-2010-10876
2010-07-12 00:00:00
Fedora Update for kernel FEDORA-2010-10880
2010-07-16 00:00:00
suse
suse
local privilege escalation in kernel
2010-08-02 13:03:12
local privilege escalation in kernel
2010-09-23 16:37:26
ubuntu
ubuntu
Linux kernel vulnerabilities
2010-10-19 00:00:00
Linux kernel vulnerabilities
2011-02-28 00:00:00
Linux kernel vulnerabilities
2011-02-25 00:00:00

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.4

Confidence

High

EPSS

0.011

Percentile

84.6%

JSON
Related for CVE-2010-2495
ubuntucve1seebug1cvelist1prion1nvd1nessus6fedora2openvas12suse2ubuntu4