Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.9
CVSSv2

CVE-2006-4535

Published: 19/09/2006 Updated: 07/11/2023
CVSS v2 Base Score: 4.9 | Impact Score: 6.9 | Exploitability Score: 3.9
VMScore: 436
Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C
Subscribe to Linux Kernel

Vulnerability Summary

The Linux kernel 2.6.17.10 and 2.6.17.11 and 2.6.18-rc5 allows local users to cause a denial of service (crash) via an SCTP socket with a certain SO_LINGER value, possibly related to the patch for CVE-2006-3745. NOTE: older kernel versions for specific Linux distributions are also affected, due to backporting of the CVE-2006-3745 patch.

Vulnerable Product Search on Vulmon Subscribe to Product

linux linux kernel 2.6.18

linux linux kernel 2.6.17.10

linux linux kernel 2.6.17.11

Vendor Advisories

Ubuntu Security Notice: linux-source-2.6.10/-2.6.12/-2.6.15 vulnerabilities
Sridhar Samudrala discovered a local Denial of Service vulnerability in the handling of SCTP sockets By opening such a socket with a special SO_LINGER value, a local attacker could exploit this to crash the kernel (CVE-2006-4535) ...
Debian Security Advisories: DSA-1184-2 kernel-source-2.6.8 -- several vulnerabilities
This advisory covers the S/390 components of the recent security update for the Linux 268 kernel that were missing due to technical problems For reference, please see the text of the original advisory Several security related problems have been discovered in the Linux kernel which may lead to a denial of service or even the execution of arbitr ...

References

CWE-399http://www.ubuntu.com/usn/usn-347-1http://www.securityfocus.com/bid/20087https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=204460http://secunia.com/advisories/21945http://www.debian.org/security/2006/dsa-1183http://www.debian.org/security/2006/dsa-1184http://secunia.com/advisories/22082http://secunia.com/advisories/22093http://secunia.com/advisories/21967http://www.redhat.com/support/errata/RHSA-2006-0689.htmlhttp://securitytracker.com/id?1016992http://secunia.com/advisories/22292http://secunia.com/advisories/22382http://support.avaya.com/elmodocs2/security/ASA-2006-249.htmhttp://secunia.com/advisories/22945http://www.mandriva.com/security/advisories?name=MDKSA-2006:182http://www.mandriva.com/security/advisories?name=MDKSA-2007:025https://exchange.xforce.ibmcloud.com/vulnerabilities/29011https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10530http://www.mail-archive.com/kernel-svn-changes%40lists.alioth.debian.org/msg02314.htmlhttps://usn.ubuntu.com/347-1/https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028CVE-2024-32406CVE-2024-25624IMAPCVE-2024-2310CVE-2024-0874CVE-2024-20359XXEremote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook