7.1

CVE-2005-0449

The netfilter/iptables module in Linux before 2.6.8.1 allows remote attackers to cause a denial of service (kernel crash) or bypass firewall rules via crafted packets, which are not properly handled by the skb_checksum_help function.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version2.6.0
LinuxLinux Kernel Version2.6.1
LinuxLinux Kernel Version2.6.2
LinuxLinux Kernel Version2.6.3
LinuxLinux Kernel Version2.6.4
LinuxLinux Kernel Version2.6.5
LinuxLinux Kernel Version2.6.6
LinuxLinux Kernel Version2.6.7
LinuxLinux Kernel Version2.6.8
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 4.64% 0.905
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.1 8.6 6.9
AV:N/AC:M/Au:N/C:N/I:N/A:C
CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://www.redhat.com/support/errata/RHSA-2005-293.html
http://www.redhat.com/support/errata/RHSA-2005-283.html
Patch
Vendor Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2005:218
http://www.novell.com/linux/security/advisories/2005_18_kernel.html
Patch
Vendor Advisory
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=152532
ftp://patches.sgi.com/support/free/security/advisories/20060402-01-U
http://secunia.com/advisories/19607
Vendor Advisory
http://secunia.com/advisories/19374
Vendor Advisory
http://www.debian.org/security/2006/dsa-1017
http://secunia.com/advisories/19369
Vendor Advisory
http://www.debian.org/security/2006/dsa-1018
http://www.securityfocus.com/bid/12598
http://www.redhat.com/support/errata/RHSA-2005-366.html
http://www.redhat.com/support/errata/RHSA-2005-284.html
Patch
Vendor Advisory
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000945
Patch
http://oss.sgi.com/archives/netdev/2005-01/msg01036.html
Vendor Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10753
https://usn.ubuntu.com/82-1/