CVE

CVE-2006-2444

Date: (C)2006-05-25   (M)2023-12-22

The snmp_trap_decode function in the SNMP NAT helper for Linux kernel before 2.6.16.18 allows remote attackers to cause a denial of service (crash) via unspecified remote attack vectors that cause failures in snmp_trap_decode that trigger (1) frees of random memory or (2) frees of previously-freed memory (double-free) by snmp_trap_decode as well as its calling function, as demonstrated via certain test cases of the PROTOS SNMP test suite.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 7.8
Exploit Score: 10.0
Impact Score: 6.9
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: COMPLETE

Reference:

SECTRACK-1016153

BID-18081

SECUNIA-20182

SECUNIA-20225

SECUNIA-20716

SECUNIA-21035

SECUNIA-21136

SECUNIA-21179

SECUNIA-21498

SECUNIA-21605

SECUNIA-21983

SECUNIA-22082

SECUNIA-22093

SECUNIA-22174

SECUNIA-22822

OSVDB-25750

ADV-2006-1916

DSA-1183

DSA-1184

MDKSA-2006:087

RHSA-2006:0437

RHSA-2006:0580

RHSA-2006:0617

SUSE-SA:2006:042

SUSE-SA:2006:047

SUSE-SA:2006:064

USN-302-1

VU#681569

http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.18

http://support.avaya.com/elmodocs2/security/ASA-2006-180.htm

http://support.avaya.com/elmodocs2/security/ASA-2006-203.htm

http://www.kernel.org/git/?p=linux/kernel/git/stable/linux-2.6.16.y.git%3Ba=commit%3Bh=1db6b5a66e93ff125ab871d6b3f7363412cc87e8

linux-snmp-nathelper-dos(26594)

oval:org.mitre.oval:def:11318