Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.9
CVSSv2

CVE-2009-1897

Published: 20/07/2009 Updated: 13/02/2023
CVSS v2 Base Score: 6.9 | Impact Score: 10 | Exploitability Score: 3.4
VMScore: 700
Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Linux

Vulnerability Summary

The tun_chr_poll function in drivers/net/tun.c in the tun subsystem in the Linux kernel 2.6.30 and 2.6.30.1, when the -fno-delete-null-pointer-checks gcc option is omitted, allows local users to gain privileges via vectors involving a NULL pointer dereference and an mmap of /dev/net/tun, a different vulnerability than CVE-2009-1894.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

linux linux kernel 2.6.30

linux linux kernel 2.6.30.1

Exploits

Exploit DB: Linux Kernel 2.6.30 < 2.6.30.1 / SELinux (RHEL 5) - Local Privilege Escalation
/* super fun 2630+/RHEL5 2618 local kernel exploit in /dev/net/tun A vulnerability which, when viewed at the source level, is unexploitable! But which, thanks to gcc optimizations, becomes exploitable :) Also, bypass of mmap_min_addr via SELinux vulnerability! (where having SELinux enabled actually increases your risk against a ...
Exploit DB: Linux Kernel 2.6.30 - 'tun_chr_pool()' Null Pointer Dereference
source: wwwsecurityfocuscom/bid/35724/info The Linux kernel is prone to a local NULL-pointer dereference vulnerability A local attacker can exploit this issue to execute arbitrary code with superuser privileges or crash an affected kernel, denying service to legitimate users This issue was introduced in Linux kernel 2630 ...

References

CWE-119http://lkml.org/lkml/2009/7/6/19http://grsecurity.net/~spender/cheddar_bay.tgzhttps://bugzilla.redhat.com/show_bug.cgi?id=512284http://archives.neohapsis.com/archives/fulldisclosure/2009-07/0241.htmlhttp://isc.sans.org/diary.html?storyid=6820http://article.gmane.org/gmane.linux.network/124939http://secunia.com/advisories/35839http://www.openwall.com/lists/oss-security/2009/07/17/1http://archives.neohapsis.com/archives/fulldisclosure/2009-07/0246.htmlhttp://www.vupen.com/english/advisories/2009/1925https://exchange.xforce.ibmcloud.com/vulnerabilities/51803https://www.redhat.com/en/blog/security-flaws-caused-compiler-optimizationshttp://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=3c8a9c63d5fd738c261bd0ceece04d9c8357ca13https://nvd.nist.govhttps://www.exploit-db.com/exploits/9191/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661open redirectCVE-2024-25512CVE-2024-33788command injectionSSTICVE-2024-0043CVE-2024-29210CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook