SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

[Forgot Password]

Paid content will be excluded from the download.

Download | Alert*

CVE

CVE-2006-2451

Date: (C)2006-07-07 (M)2023-12-22

The suid_dumpable support in Linux kernel 2.6.13 up to versions before 2.6.17.4, and 2.6.16 before 2.6.16.24, allows a local user to cause a denial of service (disk consumption) and possibly gain privileges via the PR_SET_DUMPABLE argument of the prctl function and a program that causes a core dump file to be created in a directory for which the user does not have permissions.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 4.6
Exploit Score: 3.9
Impact Score: 6.4

CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality: PARTIAL
Integrity: PARTIAL
Availability: PARTIAL

Reference:

SECTRACK-1016451

http://www.securityfocus.com/archive/1/439483/100/100/threaded

http://www.securityfocus.com/archive/1/439610/100/100/threaded

http://www.securityfocus.com/archive/1/439869/100/0/threaded

http://www.securityfocus.com/archive/1/440118/100/0/threaded

http://www.securityfocus.com/archive/1/440117/100/0/threaded

http://www.securityfocus.com/archive/1/440057/100/0/threaded

http://www.securityfocus.com/archive/1/440379/100/0/threaded

SUSE-SA:2006:042

SUSE-SA:2006:047

SUSE-SA:2006:049

SUSE-SR:2006:016

SUSE-SR:2006:017

http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=195902

http://support.avaya.com/elmodocs2/security/ASA-2006-162.htm

http://www.kernel.org/git/?p=linux/kernel/git/stable/linux-2.6.17.y.git%3Ba=commit%3Bh=0af184bb9f80edfbb94de46cb52e9592e5a547b0

http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.24

http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.17.4

https://issues.rpath.com/browse/RPL-488

oval:org.mitre.oval:def:11336

cpe:/o:linux:linux_kernel:2.6.17
cpe:/o:linux:linux_kernel:2.6.16
cpe:/o:linux:linux_kernel:2.6.15:rc1
cpe:/o:linux:linux_kernel:2.6.15
...

© SecPod Technologies