Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.8
CVSSv2

CVE-2006-2271

Published: 09/05/2006 Updated: 07/11/2023
CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10
VMScore: 695
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Subscribe to Lksctp

Vulnerability Summary

The ECNE chunk handling in Linux SCTP (lksctp) prior to 2.6.17 allows remote malicious users to cause a denial of service (kernel panic) via an unexpected chunk when the session is in CLOSED state.

Vulnerable Product Search on Vulmon Subscribe to Product

lksctp lksctp 2.6.0_test1_0.7.2

lksctp lksctp 2.6.2_0.9.0

lksctp lksctp 2.6.15_1.0.5

lksctp lksctp 2.6.0_test4_0.7.3

lksctp lksctp 2.6.13_1.0.3

lksctp lksctp 2.6.16_1.0.6

lksctp lksctp 2.6.10_1.0.2

lksctp lksctp 2.6.6_1.0.1

lksctp lksctp 2.6.14_1.0.4

lksctp lksctp 2.6.3_1.0.0

Vendor Advisories

Ubuntu Security Notice: linux-source-2.6.10⁄2.6.12⁄2.6.15 vulnerabilities
An integer overflow was discovered in the do_replace() function A local user process with the CAP_NET_ADMIN capability could exploit this to execute arbitrary commands with full root privileges However, none of Ubuntu’s supported packages use this capability with any non-root user, so this only affects you if you use some third party software l ...
Debian Security Advisories: DSA-1103-1 kernel-source-2.6.8 -- several vulnerabilities
Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2005-3359 Franz Filz discovered that some socket calls permit causing inconsistent reference count ...

References

NVD-CWE-Otherhttp://archives.neohapsis.com/archives/fulldisclosure/2006-05/0227.htmlhttp://labs.musecurity.com/advisories/MU-200605-01.txthttp://secunia.com/advisories/19990http://www.trustix.org/errata/2006/0026http://www.securityfocus.com/bid/17910http://secunia.com/advisories/20157http://www.redhat.com/support/errata/RHSA-2006-0493.htmlhttp://secunia.com/advisories/20237http://www.osvdb.org/25632http://www.debian.org/security/2006/dsa-1097http://secunia.com/advisories/20671http://www.novell.com/linux/security/advisories/2006-05-31.htmlhttp://www.ubuntu.com/usn/usn-302-1http://secunia.com/advisories/20716http://www.debian.org/security/2006/dsa-1103http://secunia.com/advisories/20914http://support.avaya.com/elmodocs2/security/ASA-2006-161.htmhttp://secunia.com/advisories/21745http://secunia.com/advisories/20398http://secunia.com/advisories/21476http://www.mandriva.com/security/advisories?name=MDKSA-2006:086http://www.vupen.com/english/advisories/2006/1734http://www.vupen.com/english/advisories/2006/2554https://exchange.xforce.ibmcloud.com/vulnerabilities/26430https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10934http://git.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=35d63edb1c807bc5317e49592260e84637bc432ehttps://usn.ubuntu.com/302-1/https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463CVE-2024-3400deserializationCVE-2024-21788CVE-2023-42433CVE-2024-21841CVE-2024-22095local file inclusionmemory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook