4.6

CVE-2006-2451

The suid_dumpable support in Linux kernel 2.6.13 up to versions before 2.6.17.4, and 2.6.16 before 2.6.16.24, allows a local user to cause a denial of service (disk consumption) and possibly gain privileges via the PR_SET_DUMPABLE argument of the prctl function and a program that causes a core dump file to be created in a directory for which the user does not have permissions.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version2.6.13
LinuxLinux Kernel Version2.6.13.1
LinuxLinux Kernel Version2.6.13.2
LinuxLinux Kernel Version2.6.13.3
LinuxLinux Kernel Version2.6.13.4
LinuxLinux Kernel Version2.6.13.5
LinuxLinux Kernel Version2.6.14
LinuxLinux Kernel Version2.6.14 Updaterc1
LinuxLinux Kernel Version2.6.14 Updaterc2
LinuxLinux Kernel Version2.6.14 Updaterc3
LinuxLinux Kernel Version2.6.14 Updaterc4
LinuxLinux Kernel Version2.6.14 Updaterc5
LinuxLinux Kernel Version2.6.14.1
LinuxLinux Kernel Version2.6.14.2
LinuxLinux Kernel Version2.6.14.3
LinuxLinux Kernel Version2.6.14.4
LinuxLinux Kernel Version2.6.14.5
LinuxLinux Kernel Version2.6.14.6
LinuxLinux Kernel Version2.6.14.7
LinuxLinux Kernel Version2.6.15
LinuxLinux Kernel Version2.6.15 Updaterc1
LinuxLinux Kernel Version2.6.15 Updaterc2
LinuxLinux Kernel Version2.6.15 Updaterc3
LinuxLinux Kernel Version2.6.15 Updaterc4
LinuxLinux Kernel Version2.6.15 Updaterc5
LinuxLinux Kernel Version2.6.15 Updaterc6
LinuxLinux Kernel Version2.6.15 Updaterc7
LinuxLinux Kernel Version2.6.15.1
LinuxLinux Kernel Version2.6.15.2
LinuxLinux Kernel Version2.6.15.3
LinuxLinux Kernel Version2.6.15.4
LinuxLinux Kernel Version2.6.15.5
LinuxLinux Kernel Version2.6.15.6
LinuxLinux Kernel Version2.6.15.7
LinuxLinux Kernel Version2.6.16
LinuxLinux Kernel Version2.6.16 Updaterc1
LinuxLinux Kernel Version2.6.16 Updaterc2
LinuxLinux Kernel Version2.6.16 Updaterc3
LinuxLinux Kernel Version2.6.16 Updaterc4
LinuxLinux Kernel Version2.6.16 Updaterc5
LinuxLinux Kernel Version2.6.16 Updaterc6
LinuxLinux Kernel Version2.6.16.1
LinuxLinux Kernel Version2.6.16.2
LinuxLinux Kernel Version2.6.16.3
LinuxLinux Kernel Version2.6.16.4
LinuxLinux Kernel Version2.6.16.5
LinuxLinux Kernel Version2.6.16.6
LinuxLinux Kernel Version2.6.16.7
LinuxLinux Kernel Version2.6.16.8
LinuxLinux Kernel Version2.6.16.9
LinuxLinux Kernel Version2.6.16.10
LinuxLinux Kernel Version2.6.16.11
LinuxLinux Kernel Version2.6.16.12
LinuxLinux Kernel Version2.6.16.13
LinuxLinux Kernel Version2.6.16.14
LinuxLinux Kernel Version2.6.16.15
LinuxLinux Kernel Version2.6.16.16
LinuxLinux Kernel Version2.6.16.17
LinuxLinux Kernel Version2.6.16.18
LinuxLinux Kernel Version2.6.16.19
LinuxLinux Kernel Version2.6.16.20
LinuxLinux Kernel Version2.6.16.21
LinuxLinux Kernel Version2.6.16.22
LinuxLinux Kernel Version2.6.16.23
LinuxLinux Kernel Version2.6.17
LinuxLinux Kernel Version2.6.17 Updaterc1
LinuxLinux Kernel Version2.6.17 Updaterc2
LinuxLinux Kernel Version2.6.17 Updaterc3
LinuxLinux Kernel Version2.6.17 Updaterc4
LinuxLinux Kernel Version2.6.17 Updaterc5
LinuxLinux Kernel Version2.6.17 Updaterc6
LinuxLinux Kernel Version2.6.17.1
LinuxLinux Kernel Version2.6.17.2
LinuxLinux Kernel Version2.6.17.3
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 4.39% 0.9
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.6 3.9 6.4
AV:L/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/20960
Vendor Advisory
http://www.novell.com/linux/security/advisories/2006_16_sr.html
http://secunia.com/advisories/21179
Vendor Advisory
http://secunia.com/advisories/21498
Vendor Advisory
http://www.novell.com/linux/security/advisories/2006_42_kernel.html
http://www.novell.com/linux/security/advisories/2006_47_kernel.html
http://www.novell.com/linux/security/advisories/2006_17_sr.html
http://secunia.com/advisories/20991
Vendor Advisory
http://www.ubuntu.com/usn/usn-311-1
http://secunia.com/advisories/20986
Vendor Advisory
http://www.securityfocus.com/archive/1/439483/100/100/threaded
http://www.securityfocus.com/archive/1/439610/100/100/threaded
https://issues.rpath.com/browse/RPL-488
http://www.novell.com/linux/security/advisories/2006_49_kernel.html
http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=195902
http://secunia.com/advisories/20953
Vendor Advisory
http://secunia.com/advisories/20965
Vendor Advisory
http://secunia.com/advisories/21966
Vendor Advisory
http://securitytracker.com/id?1016451
http://support.avaya.com/elmodocs2/security/ASA-2006-162.htm
http://www.kernel.org/git/?p=linux/kernel/git/stable/linux-2.6.17.y.git%3Ba=commit%3Bh=0af184bb9f80edfbb94de46cb52e9592e5a547b0
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.24
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.17.4
http://www.osvdb.org/27030
http://www.redhat.com/support/errata/RHSA-2006-0574.html
http://www.securityfocus.com/archive/1/439869/100/0/threaded
http://www.securityfocus.com/archive/1/440057/100/0/threaded
http://www.securityfocus.com/archive/1/440117/100/0/threaded
http://www.securityfocus.com/archive/1/440118/100/0/threaded
http://www.securityfocus.com/archive/1/440379/100/0/threaded
http://www.securityfocus.com/bid/18874
http://www.vupen.com/english/advisories/2006/2699
Vendor Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11336