Lucene search
HistoryMar 28, 2007 - 10:19 p.m.
CVE-2007-1734
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
6
Confidence
Low
EPSS
0.001
Percentile
26.3%
The DCCP support in the do_dccp_getsockopt function in net/dccp/proto.c in Linux kernel 2.6.20 and later does not verify the upper bounds of the optlen value, which allows local users running on certain architectures to read kernel memory or cause a denial of service (oops), a related issue to CVE-2007-1730.
Affected configurations
Node
linuxlinux_kernelMatch2.6.20
ORlinuxlinux_kernelMatch2.6.20.1
ORlinuxlinux_kernelMatch2.6.20.2
Related
securityvulns
securityvulns
Linux kernel DCCP information leak
2007-03-27 00:00:00
cve
cve
CVE-2007-1734
2007-03-28 22:19:00
CVE-2007-1730
2007-03-28 10:19:00
ubuntucve
ubuntucve
CVE-2007-1734
2007-03-28 00:00:00
CVE-2007-1730
2007-03-28 00:00:00
prion
prion
Out-of-bounds
2007-03-28 22:19:00
Integer overflow
2007-03-28 10:19:00
exploitdb
exploitdb
Linux Kernel 2.6.20 with DCCP Support - Memory Disclosure (2)
2007-03-28 00:00:00
Linux Kernel 2.6.20 with DCCP Support - Memory Disclosure (1)
2007-03-27 00:00:00
cvelist
cvelist
CVE-2007-1734
2007-03-28 22:00:00
CVE-2007-1730
2007-03-28 10:00:00
redhatcve
redhatcve
CVE-2007-1734
2015-10-30 10:20:56
CVE-2007-1730
2015-10-30 10:20:51
nvd
nvd
CVE-2007-1730
2007-03-28 10:19:00
nessus
nessus
ubuntu
ubuntu
Linux kernel vulnerabilities
2007-05-24 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-464-1)
2009-03-23 00:00:00
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
6
Confidence
Low
EPSS
0.001
Percentile
26.3%
Related for NVD:CVE-2007-1734