CVE-2006-2274

Severity

50%

Complexity

99%

Confidentiality

48%

Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (infinite recursion and crash) via a packet that contains two or more DATA fragments, which causes an skb pointer to refer back to itself when the full message is reassembled, leading to infinite recursion in the sctp_skb_pull function.

Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (infinite recursion and crash) via a packet that contains two or more DATA fragments, which causes an skb pointer to refer back to itself when the full message is reassembled, leading to infinite recursion in the sctp_skb_pull function.

CVSS 2.0 Base Score 5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P).

Overview

First reported 19 years ago

2006-05-09 20:02:00

Last updated 7 years ago

2017-10-11 01:30:00

Affected Software

Linux SCTP 2.6.17

2.6.17

References

http://git.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=672e7cca17ed6036a1756ed34cf20dbd72d5e5f6

20237

20398

20671

20716

20914

21045

21476

21745

http://support.avaya.com/elmodocs2/security/ASA-2006-161.htm

DSA-1097

DSA-1103

MDKSA-2006:123

MDKSA-2006:150

SUSE-SA:2006:028

25746

RHSA-2006:0493

17955

2006-0026

USN-302-1

ADV-2006-2554

linux-sctp-skb-pull-dos(26432)

oval:org.mitre.oval:def:9531

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.