Published: 10/01/2005 Updated: 03/05/2018

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Multiple vulnerabilities in the IGMP functionality for Linux kernel 2.4.22 to 2.4.28, and 2.6.x to 2.6.9, allow local and remote malicious users to cause a denial of service or execute arbitrary code via (1) the ip_mc_source function, which decrements a counter to -1, or (2) the igmp_marksources function, which does not properly validate IGMP message parameters and performs an out-of-bounds read.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel 2.4.0
linux linux kernel 2.4.1
linux linux kernel 2.4.16
linux linux kernel 2.4.17
linux linux kernel 2.4.18
linux linux kernel 2.4.19
linux linux kernel 2.4.22
linux linux kernel 2.4.23
linux linux kernel 2.4.27
linux linux kernel 2.4.5
linux linux kernel 2.4.6
linux linux kernel 2.6.0
linux linux kernel 2.6.1
linux linux kernel 2.6.6
linux linux kernel 2.6.7
linux linux kernel 2.4.10
linux linux kernel 2.4.11
linux linux kernel 2.4.2
linux linux kernel 2.4.20
linux linux kernel 2.4.23_ow2
linux linux kernel 2.4.7
linux linux kernel 2.4.8
linux linux kernel 2.6.8
ubuntu ubuntu linux 4.1
linux linux kernel 2.4.14
linux linux kernel 2.4.15
linux linux kernel 2.4.21
linux linux kernel 2.4.25
linux linux kernel 2.4.26
linux linux kernel 2.4.28
linux linux kernel 2.4.3
linux linux kernel 2.4.4
linux linux kernel 2.6.5
linux linux kernel 2.6.9
linux linux kernel 2.6_test9_cvs
linux linux kernel 2.4.12
linux linux kernel 2.4.13
linux linux kernel 2.4.24
linux linux kernel 2.4.24_ow1
linux linux kernel 2.4.9
linux linux kernel 2.6.2
linux linux kernel 2.6.3
linux linux kernel 2.6.4

CAN-2004-0814: ...

Synopsis kernel security update Type/Severity Security Advisory: Important Topic Updated kernel packages that fix several security issues in Red HatEnterprise Linux 3 are now available Description The Linux kernel handles the basic functions of the operating systemThis advisory includes f ...

Synopsis kernel security update Type/Severity Security Advisory: Important Topic Updated kernel packages that fix several security issues are now availablefor Red Hat Enterprise Linux 4This update has been rated as having important security impact by the RedHat Security Response Team Description ...

/* * Linux igmpc local DoS * Warning: this code will crash your machine! * * gcc -O2 mreqfckc -o mreqfck * * Copyright (c) 2004 iSEC Security Research All Rights Reserved * * THIS PROGRAM IS FOR EDUCATIONAL PURPOSES *ONLY* IT IS PROVIDED "AS IS" * AND WITHOUT ANY WARRANTY COPYING, PRINTING, DISTRIBUTION, MODIFICATION * WITHOUT PERMISSION OF T ...

NVD-CWE-Other http://isec.pl/vulnerabilities/isec-0018-igmp.txt https://bugzilla.fedora.us/show_bug.cgi?id=2336 http://www.redhat.com/support/errata/RHSA-2005-092.html http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=000930 http://www.novell.com/linux/security/advisories/2004_44_kernel.html http://www.mandriva.com/security/advisories?name=MDKSA-2005:022 http://marc.info/?l=bugtraq&m=110306397320336&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/18482 https://exchange.xforce.ibmcloud.com/vulnerabilities/18481 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11144 https://usn.ubuntu.com/38-1/https://nvd.nist.gov https://www.exploit-db.com/exploits/686/

CVE-2004-1137

Vulnerability Summary

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect