Published: 12/03/2007 Updated: 11/10/2017
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
VMScore: 725
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

The ipv6_getsockopt_sticky function in net/ipv6/ipv6_sockglue.c in the Linux kernel prior to allows local users to read arbitrary kernel memory via certain getsockopt calls that trigger a NULL dereference.

Vendor Advisories

The compat_sys_mount function allowed local users to cause a denial of service when mounting a smbfs filesystem in compatibility mode (CVE-2006-7203) ...
A flaw was discovered in dvb ULE decapsulation A remote attacker could send a specially crafted message and cause a denial of service (CVE-2006-4623) ...


/* * Linux Kernel IPV6_Getsockopt_Sticky Memory Leak Proof Of Concept * dreyer 07-2007 * Osu, Tatakae, Sexy Pandas! * * Dumps to stdout the memory mapped between INI and END * * CVE: CVE-2007-1000 BID: 22904 * * Affected: Linux Kernel < 26202 * * bugzillakernelorg/show_bugcgi?id=8134 * * Exploitation based on null ...

Mailing Lists

Linux kernel IPV6_Getsockopt_Sticky memory leak proof of concept exploit This affects versions below 26202 ...