Published: 18/01/2008 Updated: 29/09/2017

CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10

VMScore: 785

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

The Linux kernel 2.6.20 up to and including 2.6.21.1 allows remote malicious users to cause a denial of service (panic) via a certain IPv6 packet, possibly involving the Jumbo Payload hop-by-hop option (jumbogram).

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel 2.6.2
linux linux kernel 2.6.20.15
linux linux kernel 2.6.20.2
linux linux kernel 2.6.20.9
linux linux kernel 2.6.20
linux linux kernel 2.6.21
linux linux kernel 2.6.20.1
linux linux kernel 2.6.20.10
linux linux kernel 2.6.20.3
linux linux kernel 2.6.20.4
linux linux kernel 2.6.21.1
linux linux kernel 2.6.20.11
linux linux kernel 2.6.20.12
linux linux kernel 2.6.20.5
linux linux kernel 2.6.20.6
linux linux kernel 2.6.20.13
linux linux kernel 2.6.20.14
linux linux kernel 2.6.20.7
linux linux kernel 2.6.20.8

/* * Clemens Kurtenbach <ckurtenbach at s21sec com> * PoC code for exploiting the jumbo bug found in * linux kernels >=2620 and <=26211 * gcc -O2 ipv6_jumbo_crashc -o ipv6_jumbo_crash * */ /* io */ #include <stdioh> #include <stringh> #include <stdlibh> /* network */ #include <sys/socketh> # ...

CWE-119 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.21.2 http://bugzilla.kernel.org/show_bug.cgi?id=8450 https://exchange.xforce.ibmcloud.com/vulnerabilities/39643 https://www.exploit-db.com/exploits/4893 https://nvd.nist.gov https://www.exploit-db.com/exploits/4893/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-0352

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect