7.8

CVE-2006-2272

Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (kernel panic) via incoming IP fragmented (1) COOKIE_ECHO and (2) HEARTBEAT SCTP control chunks.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 4.34% 0.899
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 10 6.9
AV:N/AC:L/Au:N/C:N/I:N/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/21476
http://secunia.com/advisories/20237
http://secunia.com/advisories/21745
http://support.avaya.com/elmodocs2/security/ASA-2006-161.htm
http://www.redhat.com/support/errata/RHSA-2006-0493.html
http://secunia.com/advisories/20914
http://www.debian.org/security/2006/dsa-1103
http://www.vupen.com/english/advisories/2006/2554
http://secunia.com/advisories/20398
http://www.novell.com/linux/security/advisories/2006-05-31.html
http://secunia.com/advisories/20671
http://www.debian.org/security/2006/dsa-1097
http://secunia.com/advisories/20157
http://www.mandriva.com/security/advisories?name=MDKSA-2006:086
http://secunia.com/advisories/20716
http://www.ubuntu.com/usn/usn-302-1
http://www.trustix.org/errata/2006/0026
http://archives.neohapsis.com/archives/fulldisclosure/2006-05/0227.html
Patch
http://labs.musecurity.com/advisories/MU-200605-01.txt
Patch
Vendor Advisory
http://secunia.com/advisories/19990
Patch
Vendor Advisory
http://www.securityfocus.com/bid/17910
http://www.vupen.com/english/advisories/2006/1734
http://git.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=62b08083ec3dbfd7e533c8d230dd1d8191a6e813
http://www.osvdb.org/25633
https://exchange.xforce.ibmcloud.com/vulnerabilities/26431
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11243