[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

250039

 
 

909

 
 

195882

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2006-1527Date: (C)2006-05-03   (M)2023-12-22


The SCTP-netfilter code in Linux kernel before 2.6.16.13 allows remote attackers to trigger a denial of service (infinite loop) via unknown vectors that cause an invalid SCTP chunk size to be processed by the for_each_sctp_chunk function.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 5.0
Exploit Score: 10.0
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL
  
Reference:
BID-17806
SECUNIA-19926
2006-0024
SECUNIA-20157
SECUNIA-20237
SECUNIA-20398
SECUNIA-20716
SECUNIA-21745
OSVDB-25229
ADV-2006-1632
MDKSA-2006:086
RHSA-2006:0493
SUSE-SA:2006:028
USN-302-1
http://support.avaya.com/elmodocs2/security/ASA-2006-161.htm
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.13
linux-sctp-netfilter-dos(26194)
oval:org.mitre.oval:def:10373

CPE    1
cpe:/o:linux:linux_kernel:2.6.16.12

© SecPod Technologies