Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.9
CVSSv2

CVE-2007-1861

Published: 07/05/2007 Updated: 16/10/2018
CVSS v2 Base Score: 4.9 | Impact Score: 6.9 | Exploitability Score: 3.9
VMScore: 495
Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C
Subscribe to Linux Kernel

Vulnerability Summary

The nl_fib_lookup function in net/ipv4/fib_frontend.c in Linux Kernel prior to 2.6.20.8 allows malicious users to cause a denial of service (kernel panic) via NETLINK_FIB_LOOKUP replies, which trigger infinite recursion and a stack overflow.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

linux linux kernel 2.6.20.3

linux linux kernel 2.6.20.5

linux linux kernel 2.6.20.4

linux linux kernel 2.6.19.5

linux linux kernel 2.6.19.4

linux linux kernel 2.6.18.1

linux linux kernel 2.6.18

linux linux kernel 2.6.17.14

linux linux kernel 2.6.17.2

linux linux kernel 2.6.17.11

linux linux kernel 2.6.16.6

linux linux kernel 2.6.16.55

linux linux kernel 2.6.16.54

linux linux kernel 2.6.16.49

linux linux kernel 2.6.16.5

linux linux kernel 2.6.16.41

linux linux kernel 2.6.16.42

linux linux kernel 2.6.16.33

linux linux kernel 2.6.16.34

linux linux kernel 2.6.16.27

linux linux kernel 2.6.16.3

linux linux kernel 2.6.16.21

linux linux kernel 2.6.16.2

linux linux kernel 2.6.20.2

linux linux kernel 2.6.19.3

linux linux kernel 2.6.19.2

linux linux kernel 2.6.17.9

linux linux kernel 2.6.17.7

linux linux kernel 2.6.17.3

linux linux kernel 2.6.17

linux linux kernel 2.6.16.61

linux linux kernel 2.6.16.62

linux linux kernel 2.6.16.8

linux linux kernel 2.6.16.7

linux linux kernel 2.6.16.48

linux linux kernel 2.6.16.47

linux linux kernel 2.6.16.43

linux linux kernel 2.6.16.44

linux linux kernel 2.6.16.37

linux linux kernel 2.6.16.35

linux linux kernel 2.6.16.29

linux linux kernel 2.6.16.18

linux linux kernel 2.6.16.20

linux linux kernel 2.6.16.23

linux linux kernel 2.6.16.17

linux linux kernel 2.6.16.15

linux linux kernel 2.6.16

linux linux kernel 2.6.15.7

linux linux kernel 2.6.15.6

linux linux kernel 2.6.14.1

linux linux kernel 2.6.14.2

linux linux kernel 2.6.12.3

linux linux kernel 2.6.12.2

linux linux kernel 2.6.11.1

linux linux kernel 2.6.11.2

linux linux kernel 2.6.10

linux linux kernel 2.6.9

linux linux kernel 2.6.3

linux linux kernel 2.6.2

linux linux kernel 2.6.20.7

linux linux kernel 2.6.20.6

linux linux kernel 2.6.19.6

linux linux kernel 2.6.19.7

linux linux kernel 2.6.18.6

linux linux kernel 2.6.18.5

linux linux kernel 2.6.18.3

linux linux kernel 2.6.17.6

linux linux kernel 2.6.17.4

linux linux kernel 2.6.17.13

linux linux kernel 2.6.17.10

linux linux kernel 2.6.16.57

linux linux kernel 2.6.16.56

linux linux kernel 2.6.16.51

linux linux kernel 2.6.16.50

linux linux kernel 2.6.16.53

linux linux kernel 2.6.16.36

linux linux kernel 2.6.16.39

linux linux kernel 2.6.16.40

linux linux kernel 2.6.16.32

linux linux kernel 2.6.16.28

linux linux kernel 2.6.16.25

linux linux kernel 2.6.16.22

linux linux kernel 2.6.16.11

linux linux kernel 2.6.16.13

linux linux kernel 2.6.15.3

linux linux kernel 2.6.15.4

linux linux kernel 2.6.14.5

linux linux kernel 2.6.14.6

linux linux kernel 2.6.13.1

linux linux kernel 2.6.13.5

linux linux kernel 2.6.12.6

linux linux kernel 2.6.12.1

linux linux kernel 2.6.11.5

linux linux kernel 2.6.11.6

linux linux kernel 2.6.11.10

linux linux kernel 2.6.7

linux linux kernel 2.6.6

linux linux kernel

linux linux kernel 2.6.20.1

linux linux kernel 2.6.20

linux linux kernel 2.6.19

linux linux kernel 2.6.18.8

linux linux kernel 2.6.17.5

linux linux kernel 2.6.17.8

linux linux kernel 2.6.17.1

linux linux kernel 2.6.17.12

linux linux kernel 2.6.16.60

linux linux kernel 2.6.16.59

linux linux kernel 2.6.16.58

linux linux kernel 2.6.16.9

linux linux kernel 2.6.16.52

linux linux kernel 2.6.16.46

linux linux kernel 2.6.16.45

linux linux kernel 2.6.16.4

linux linux kernel 2.6.16.38

linux linux kernel 2.6.16.30

linux linux kernel 2.6.16.31

linux linux kernel 2.6.16.19

linux linux kernel 2.6.16.26

linux linux kernel 2.6.16.12

linux linux kernel 2.6.16.14

linux linux kernel 2.6.16.1

linux linux kernel 2.6.15

linux linux kernel 2.6.15.5

linux linux kernel 2.6.14.7

linux linux kernel 2.6.13

linux linux kernel 2.6.13.2

linux linux kernel 2.6.12.5

linux linux kernel 2.6.12.4

linux linux kernel 2.6.11.3

linux linux kernel 2.6.11.4

linux linux kernel 2.6.8.1

linux linux kernel 2.6.8

linux linux kernel 2.6.1

linux linux kernel 2.6.0

linux linux kernel 2.6.16.24

linux linux kernel 2.6.16.10

linux linux kernel 2.6.16.16

linux linux kernel 2.6.15.1

linux linux kernel 2.6.15.2

linux linux kernel 2.6.14

linux linux kernel 2.6.14.3

linux linux kernel 2.6.14.4

linux linux kernel 2.6.13.3

linux linux kernel 2.6.13.4

linux linux kernel 2.6.12

linux linux kernel 2.6.11

linux linux kernel 2.6.11.12

linux linux kernel 2.6.11.11

linux linux kernel 2.6.5

linux linux kernel 2.6.4

Vendor Advisories

Ubuntu Security Notice: linux-source-2.6.17 vulnerabilities
The compat_sys_mount function allowed local users to cause a denial of service when mounting a smbfs filesystem in compatibility mode (CVE-2006-7203) ...
Ubuntu Security Notice: linux-source-2.6.15 vulnerability
A flaw was discovered in dvb ULE decapsulation A remote attacker could send a specially crafted message and cause a denial of service (CVE-2006-4623) ...

Exploits

Exploit DB: Linux Kernel 2.6.x - NETLINK_FIB_LOOKUP Local Denial of Service
/* source: wwwsecurityfocuscom/bid/23677/info The Linux kernel is prone to a denial-of-service vulnerability This issue presents itself when a NETLINK message is misrouted A local attacker may exploit this issue to trigger an infinite-recursion stack-based overflow in the kernel This results in a denial of service to legitimate users ...

References

CWE-399https://issues.rpath.com/browse/RPL-1309http://secunia.com/advisories/25083http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.8https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=237913http://www.securityfocus.com/bid/23677http://secunia.com/advisories/25030http://www.debian.org/security/2007/dsa-1289http://www.redhat.com/support/errata/RHSA-2007-0347.htmlhttp://secunia.com/advisories/25228http://secunia.com/advisories/25288http://www.securityfocus.com/archive/1/471457http://www.mandriva.com/security/advisories?name=MDKSA-2007:171http://www.novell.com/linux/security/advisories/2007_43_kernel.htmlhttp://www.ubuntu.com/usn/usn-486-1http://www.ubuntu.com/usn/usn-489-1http://secunia.com/advisories/25691http://secunia.com/advisories/25961http://secunia.com/advisories/26133http://secunia.com/advisories/26139http://secunia.com/advisories/26620http://www.vupen.com/english/advisories/2007/1595https://exchange.xforce.ibmcloud.com/vulnerabilities/34014https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11616http://www.securityfocus.com/archive/1/467939/30/6690/threadedhttps://nvd.nist.govhttps://usn.ubuntu.com/486-1/https://www.exploit-db.com/exploits/29916/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-35000CVE-2024-4439unauthorizedCVE-2024-0042CVE-2024-31848CVE-2023-40694cache poisoningCVE-2024-23707firmware
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook