Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.9
CVSSv2

CVE-2007-2525

Published: 08/05/2007 Updated: 11/10/2017
CVSS v2 Base Score: 4.9 | Impact Score: 6.9 | Exploitability Score: 3.9
VMScore: 436
Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C
Subscribe to Linux Kernel

Vulnerability Summary

Memory leak in the PPP over Ethernet (PPPoE) socket implementation in the Linux kernel prior to 2.6.21-git8 allows local users to cause a denial of service (memory consumption) by creating a socket using connect, and releasing it before the PPPIOCGCHAN ioctl is initialized.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

linux linux kernel

Vendor Advisories

Ubuntu Security Notice: linux-source-2.6.20 vulnerabilities
A flaw was discovered in the PPP over Ethernet implementation Local attackers could manipulate ioctls and cause kernel memory consumption leading to a denial of service (CVE-2007-2525) ...
Ubuntu Security Notice: linux-source-2.6.17 vulnerabilities
The compat_sys_mount function allowed local users to cause a denial of service when mounting a smbfs filesystem in compatibility mode (CVE-2006-7203) ...
Ubuntu Security Notice: linux-source-2.6.15 vulnerability
A flaw was discovered in dvb ULE decapsulation A remote attacker could send a specially crafted message and cause a denial of service (CVE-2006-4623) ...
Debian Security Advisories: DSA-1356-1 linux-2.6 -- several vulnerabilities
Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2007-1353 Ilja van Sprundel discovered that kernel memory could be leaked via the Bluetooth setsoc ...
Debian Security Advisories: DSA-1503-1 kernel-source-2.4.27 -- several vulnerabilities
Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2004-2731 infamous41md reported multiple integer overflows in the Sbus PROM driver that would allo ...

References

NVD-CWE-Otherhttp://kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.21-git8.loghttp://secunia.com/advisories/25163http://www.securityfocus.com/bid/23870http://support.avaya.com/elmodocs2/security/ASA-2007-287.htmhttp://www.debian.org/security/2007/dsa-1356http://www.mandriva.com/security/advisories?name=MDKSA-2007:171http://www.mandriva.com/security/advisories?name=MDKSA-2007:196http://www.mandriva.com/security/advisories?name=MDKSA-2007:216https://rhn.redhat.com/errata/RHSA-2007-0376.htmlhttp://rhn.redhat.com/errata/RHSA-2007-0488.htmlhttp://www.novell.com/linux/security/advisories/2007_51_kernel.htmlhttp://www.novell.com/linux/security/advisories/2007_53_kernel.htmlhttp://www.ubuntu.com/usn/usn-486-1http://www.ubuntu.com/usn/usn-489-1http://www.ubuntu.com/usn/usn-510-1http://secunia.com/advisories/25700http://secunia.com/advisories/25838http://secunia.com/advisories/26133http://secunia.com/advisories/26139http://secunia.com/advisories/26289http://secunia.com/advisories/26450http://secunia.com/advisories/26620http://secunia.com/advisories/26664http://secunia.com/advisories/27227http://www.debian.org/security/2008/dsa-1503http://www.debian.org/security/2008/dsa-1504http://secunia.com/advisories/29058http://www.vupen.com/english/advisories/2007/1703https://exchange.xforce.ibmcloud.com/vulnerabilities/34150https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10594https://nvd.nist.govhttps://usn.ubuntu.com/510-1/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionfirmwareCVE-2006-4304CVE-2024-32878CVE-2024-31502XSSCVE-2024-3059CVE-2024-33692CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook