7.1
CVE-2005-0449
- EPSS 4.64%
- Veröffentlicht 02.05.2005 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:11:07
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The netfilter/iptables module in Linux before 2.6.8.1 allows remote attackers to cause a denial of service (kernel crash) or bypass firewall rules via crafted packets, which are not properly handled by the skb_checksum_help function.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version2.6.0
Linux ≫ Linux Kernel Version2.6.1
Linux ≫ Linux Kernel Version2.6.2
Linux ≫ Linux Kernel Version2.6.3
Linux ≫ Linux Kernel Version2.6.4
Linux ≫ Linux Kernel Version2.6.5
Linux ≫ Linux Kernel Version2.6.6
Linux ≫ Linux Kernel Version2.6.7
Linux ≫ Linux Kernel Version2.6.8
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 4.64% | 0.905 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.1 | 8.6 | 6.9 |
AV:N/AC:M/Au:N/C:N/I:N/A:C
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
http://www.redhat.com/support/errata/RHSA-2005-293.html
http://www.redhat.com/support/errata/RHSA-2005-283.html
http://www.mandriva.com/security/advisories?name=MDKSA-2005:218
http://www.novell.com/linux/security/advisories/2005_18_kernel.html
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=152532
ftp://patches.sgi.com/support/free/security/advisories/20060402-01-U
http://secunia.com/advisories/19607
http://secunia.com/advisories/19374
http://www.debian.org/security/2006/dsa-1017
http://secunia.com/advisories/19369
http://www.debian.org/security/2006/dsa-1018
http://www.securityfocus.com/bid/12598
http://www.redhat.com/support/errata/RHSA-2005-366.html
http://www.redhat.com/support/errata/RHSA-2005-284.html
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000945
http://oss.sgi.com/archives/netdev/2005-01/msg01036.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10753
https://usn.ubuntu.com/82-1/