Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.9
CVSSv2

CVE-2007-2878

Published: 29/05/2007 Updated: 11/10/2017
CVSS v2 Base Score: 4.9 | Impact Score: 6.9 | Exploitability Score: 3.9
VMScore: 495
Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C
Subscribe to Linux

Vulnerability Summary

The VFAT compat ioctls in the Linux kernel prior to 2.6.21.2, when run on a 64-bit system, allow local users to corrupt a kernel_dirent struct and cause a denial of service (system crash) via unknown vectors.

Vulnerable Product Search on Vulmon Subscribe to Product

linux linux kernel 2.6.21.1

Vendor Advisories

Debian Security Advisories: DSA-1479-1 linux-2.6 -- several vulnerabilities
Several local vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2007-2878 Bart Oldeman reported a denial of service (DoS) issue in the VFAT filesystem that allows local user ...
Ubuntu Security Notice: linux-source-2.6.20 vulnerabilities
A flaw was discovered in the PPP over Ethernet implementation Local attackers could manipulate ioctls and cause kernel memory consumption leading to a denial of service (CVE-2007-2525) ...
Ubuntu Security Notice: linux-source-2.6.17 vulnerabilities
The compat_sys_mount function allowed local users to cause a denial of service when mounting a smbfs filesystem in compatibility mode (CVE-2006-7203) ...
Ubuntu Security Notice: linux-source-2.6.15 vulnerability
A flaw was discovered in dvb ULE decapsulation A remote attacker could send a specially crafted message and cause a denial of service (CVE-2006-4623) ...

Exploits

Exploit DB: Linux Kernel 2.6.x - VFat Compat IOCTLS Local Denial of Service
/* source: wwwsecurityfocuscom/bid/24134/info The Linux Kernel is prone to a denial-of-service vulnerability A local attacker can exploit this issue to cause the kernel to crash, effectively denying service to legitimate users */ #include <sys/typesh> #include <sys/ioctlh> #include <direnth> #include ...

References

NVD-CWE-Otherhttp://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.21.2http://www.securityfocus.com/bid/24134http://support.avaya.com/elmodocs2/security/ASA-2007-474.htmhttp://www.redhat.com/support/errata/RHSA-2007-0705.htmlhttp://www.redhat.com/support/errata/RHSA-2007-0939.htmlhttp://www.ubuntu.com/usn/usn-486-1http://www.ubuntu.com/usn/usn-489-1http://www.ubuntu.com/usn/usn-510-1http://secunia.com/advisories/25505http://secunia.com/advisories/26133http://secunia.com/advisories/26139http://secunia.com/advisories/26760http://secunia.com/advisories/27436http://secunia.com/advisories/27747http://www.debian.org/security/2008/dsa-1479http://secunia.com/advisories/28626http://www.vupen.com/english/advisories/2007/2023http://osvdb.org/35926https://exchange.xforce.ibmcloud.com/vulnerabilities/34669https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11674https://nvd.nist.govhttps://www.debian.org/security/./dsa-1479https://usn.ubuntu.com/510-1/https://www.exploit-db.com/exploits/30080/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907hardcodedinjectCVE-2024-20359CVE-2024-2467CVE-2024-4077CVE-2024-22391cameraCVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook