Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
10
CVSSv2

CVE-2014-2523

Published: 24/03/2014 Updated: 07/11/2023
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
VMScore: 890
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Linux Kernel

Vulnerability Summary

net/netfilter/nf_conntrack_proto_dccp.c in the Linux kernel up to and including 3.13.6 uses a DCCP header pointer incorrectly, which allows remote malicious users to cause a denial of service (system crash) or possibly execute arbitrary code via a DCCP packet that triggers a call to the (1) dccp_new, (2) dccp_packet, or (3) dccp_error function.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

linux linux kernel

canonical ubuntu linux 10.04

Vendor Advisories

Amazon Linux AMI: ALAS-2014-328
The ip6_route_add function in net/ipv6/routec in the Linux kernel through 3136 does not properly count the addition of routes, which allows remote attackers to cause a denial of service (memory consumption) via a flood of ICMPv6 Router Advertisement packets drivers/vhost/netc in the Linux kernel before 31310, when mergeable buffers are disab ...
Red Hat: CVE-2014-2523
net/netfilter/nf_conntrack_proto_dccpc in the Linux kernel through 3136 uses a DCCP header pointer incorrectly, which allows remote attackers to cause a denial of service (system crash) or possibly execute arbitrary code via a DCCP packet that triggers a call to the (1) dccp_new, (2) dccp_packet, or (3) dccp_error function ...
Ubuntu Security Notice: linux-ec2 vulnerabilities
Several security issues were fixed in the kernel ...
Ubuntu Security Notice: linux vulnerabilities
Several security issues were fixed in the kernel ...
Ubuntu Security Notice: linux-lts-saucy vulnerabilities
Several security issues were fixed in the kernel ...
Ubuntu Security Notice: linux-lts-raring vulnerabilities
Several security issues were fixed in the kernel ...
Ubuntu Security Notice: linux-lts-quantal vulnerabilities
Several security issues were fixed in the kernel ...
Ubuntu Security Notice: linux vulnerabilities
Several security issues were fixed in the kernel ...
Ubuntu Security Notice: linux-ti-omap4 vulnerabilities
Several security issues were fixed in the kernel ...
Ubuntu Security Notice: linux vulnerabilities
Several security issues were fixed in the kernel ...

References

CWE-20https://bugzilla.redhat.com/show_bug.cgi?id=1077343https://github.com/torvalds/linux/commit/b22f5126a24b3b2f15448c3f2a254fc10cbc2b92http://twitter.com/grsecurity/statuses/445496197399461888http://www.openwall.com/lists/oss-security/2014/03/17/7http://secunia.com/advisories/57446http://www.securityfocus.com/bid/66279http://www.securitytracker.com/id/1029945https://exchange.xforce.ibmcloud.com/vulnerabilities/91910http://www.ubuntu.com/usn/USN-2174-1http://www.ubuntu.com/usn/USN-2173-1http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b22f5126a24b3b2f15448c3f2a254fc10cbc2b92https://nvd.nist.govhttps://alas.aws.amazon.com/ALAS-2014-328.htmlhttps://access.redhat.com/security/cve/cve-2014-2523https://usn.ubuntu.com/2174-1/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypassCVE-2024-30051remoteCVE-2024-27954CVE-2023-51483CVE-2023-47782SSRFCVE-2024-24715CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook