7.2
CVSSv2

CVE-2007-1000

Published: 12/03/2007 Updated: 11/10/2017
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
VMScore: 725
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

The ipv6_getsockopt_sticky function in net/ipv6/ipv6_sockglue.c in the Linux kernel prior to 2.6.20.2 allows local users to read arbitrary kernel memory via certain getsockopt calls that trigger a NULL dereference.

Affected Products

Vendor Product Versions
LinuxLinux Kernel2.6.20.1

Vendor Advisories

The compat_sys_mount function allowed local users to cause a denial of service when mounting a smbfs filesystem in compatibility mode (CVE-2006-7203) ...
A flaw was discovered in dvb ULE decapsulation A remote attacker could send a specially crafted message and cause a denial of service (CVE-2006-4623) ...

Exploits

/* * Linux Kernel IPV6_Getsockopt_Sticky Memory Leak Proof Of Concept * dreyer 07-2007 * Osu, Tatakae, Sexy Pandas! * * Dumps to stdout the memory mapped between INI and END * * CVE: CVE-2007-1000 BID: 22904 * * Affected: Linux Kernel < 26202 * * bugzillakernelorg/show_bugcgi?id=8134 * * Exploitation based on null ...

Mailing Lists

Linux kernel IPV6_Getsockopt_Sticky memory leak proof of concept exploit This affects versions below 26202 ...

Github Repositories