CVE-2006-2444

Severity

78%

Complexity

99%

Confidentiality

115%

Successful exploitation requires that the "ip_nat_snmp_basic" module is loaded and that traffic NAT is enabled on port 161 or 162. This vulnerability is addressed in the following product release: Linux, Linux Kernel, 2.6.16.18

The snmp_trap_decode function in the SNMP NAT helper for Linux kernel before 2.6.16.18 allows remote attackers to cause a denial of service (crash) via unspecified remote attack vectors that cause failures in snmp_trap_decode that trigger (1) frees of random memory or (2) frees of previously-freed memory (double-free) by snmp_trap_decode as well as its calling function, as demonstrated via certain test cases of the PROTOS SNMP test suite.

Successful exploitation requires that the "ip_nat_snmp_basic" module is loaded and that traffic NAT is enabled on port 161 or 162. This vulnerability is addressed in the following product release: Linux, Linux Kernel, 2.6.16.18

CVSS 2.0 Base Score 7.8. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:C).

Overview

Type

Linux Kernel

First reported 18 years ago

2006-05-25 10:02:00

Last updated 6 years ago

2018-10-30 16:26:00

Affected Software

Linux Kernel 2.6.0

2.6.0

Linux Kernel 2.6 test1

2.6.0

Linux Kernel 2.6 test10

2.6.0

Linux Kernel 2.6 test11

2.6.0

Linux Kernel 2.6 test2

2.6.0

Linux Kernel 2.6 test3

2.6.0

Linux Kernel 2.6 test4

2.6.0

Linux Kernel 2.6 test5

2.6.0

Linux Kernel 2.6 test6

2.6.0

Linux Kernel 2.6 test7

2.6.0

Linux Kernel 2.6 test8

2.6.0

Linux Kernel 2.6 test9

2.6.0

Linux Kernel 2.6.1

2.6.1

Linux Kernel 2.6.1 Release Candidate 1

2.6.1

Linux Kernel 2.6.1 Release Candidate 2

2.6.1

Linux Kernel 2.6.1 Release Candidate 3

2.6.1

Linux Kernel 2.6.2

2.6.2

Linux Kernel 2.6.2 Release Candidate 1

2.6.2

Linux Kernel 2.6.2 Release Candidate 2

2.6.2

Linux Kernel 2.6.2 Release Candidate 3

2.6.2

Linux Kernel 2.6.3

2.6.3

Linux Kernel 2.6.3 Release Candidate 1

2.6.3

Linux Kernel 2.6.3 Release Candidate 2

2.6.3

Linux Kernel 2.6.3 Release Candidate 3

2.6.3

Linux Kernel 2.6.3 Release Candidate 4

2.6.3

Linux Kernel 2.6.4

2.6.4

Linux Kernel 2.6.4 Release Candidate 1

2.6.4

Linux Kernel 2.6.4 Release Candidate 2

2.6.4

Linux Kernel 2.6.4 Release Candidate 3

2.6.4

Linux Kernel 2.6.5

2.6.5

Linux Kernel 2.6.5 Release Candidate 1

2.6.5

Linux Kernel 2.6.5 Release Candidate 2

2.6.5

Linux Kernel 2.6.5 Release Candidate 3

2.6.5

Linux Kernel 2.6.6

2.6.6

Linux Kernel 2.6.6 Release Candidate 1

2.6.6

Linux Kernel 2.6.6 Release Candidate 2

2.6.6

Linux Kernel 2.6.6 Release Candidate 3

2.6.6

Linux Kernel 2.6.7

2.6.7

Linux Kernel 2.6.7 Release Candidate 1

2.6.7

Linux Kernel 2.6.7 Release Candidate 2

2.6.7

Linux Kernel 2.6.7 Release Candidate 3

2.6.7

Linux Kernel 2.6.8

2.6.8

Linux Kernel 2.6.8 Release Candidate 1

2.6.8

Linux Kernel 2.6.8 Release Candidate 2

2.6.8

Linux Kernel 2.6.8 Release Candidate 3

2.6.8

Linux Kernel 2.6.8 Release Candidate 4

2.6.8

Linux Kernel 2.6.8.1

2.6.8.1

Linux Kernel 2.6.9

2.6.9

Linux Kernel 2.6.9 Release Candidate 1

2.6.9

Linux Kernel 2.6.9 Release Candidate 2

2.6.9

Linux Kernel 2.6.9 Release Candidate 3

2.6.9

Linux Kernel 2.6.9 Release Candidate 4

2.6.9

Linux Kernel 2.6.10

2.6.10

Linux Kernel 2.6.10 Release Candidate 1

2.6.10

Linux Kernel 2.6.10 Release Candidate 2

2.6.10

Linux Kernel 2.6.10 Release Candidate 3

2.6.10

Linux Kernel 2.6.11

2.6.11

Linux Kernel 2.6.11 Release Candidate 1

2.6.11

Linux Kernel 2.6.11 Release Candidate 2

2.6.11

Linux Kernel 2.6.11 Release Candidate 3

2.6.11

Linux Kernel 2.6.11 Release Candidate 4

2.6.11

Linux Kernel 2.6.11 Release Candidate 5

2.6.11

Linux Kernel 2.6.11.1

2.6.11.1

Linux Kernel 2.6.11.2

2.6.11.2

Linux Kernel 2.6.11.3

2.6.11.3

Linux Kernel 2.6.11.4

2.6.11.4

Linux Kernel 2.6.11.5

2.6.11.5

Linux Kernel 2.6.11.6

2.6.11.6

Linux Kernel 2.6.11.7

2.6.11.7

Linux Kernel 2.6.11.8

2.6.11.8

Linux Kernel 2.6.11.9

2.6.11.9

Linux Kernel 2.6.11.10

2.6.11.10

Linux Kernel 2.6.11.11

2.6.11.11

Linux Kernel 2.6.11.12

2.6.11.12

Linux Kernel 2.6.12

2.6.12

Linux Kernel 2.6.12 Release Candidate 1

2.6.12

Linux Kernel 2.6.12 Release Candidate 2

2.6.12

Linux Kernel 2.6.12 Release Candidate 3

2.6.12

Linux Kernel 2.6.12 Release Candidate 4

2.6.12

Linux Kernel 2.6.12 Release Candidate 5

2.6.12

Linux Kernel 2.6.12 Release Candidate 6

2.6.12

Linux Kernel 2.6.12.1

2.6.12.1

Linux Kernel 2.6.12.2

2.6.12.2

Linux Kernel 2.6.12.3

2.6.12.3

Linux Kernel 2.6.12.4

2.6.12.4

Linux Kernel 2.6.12.5

2.6.12.5

Linux Kernel 2.6.12.6

2.6.12.6

Linux Kernel 2.6.13

2.6.13

Linux Kernel 2.6.13 Release Candidate 1

2.6.13

Linux Kernel 2.6.13 Release Candidate 2

2.6.13

Linux Kernel 2.6.13 Release Candidate 3

2.6.13

Linux Kernel 2.6.13 Release Candidate 4

2.6.13

Linux Kernel 2.6.13 Release Candidate 5

2.6.13

Linux Kernel 2.6.13 Release Candidate 6

2.6.13

Linux Kernel 2.6.13 Release Candidate 7

2.6.13

Linux Kernel 2.6.13.1

2.6.13.1

Linux Kernel 2.6.13.2

2.6.13.2

Linux Kernel 2.6.13.3

2.6.13.3

Linux Kernel 2.6.13.4

2.6.13.4

Linux Kernel 2.6.14

2.6.14

Linux Kernel 2.6.14 Release Candidate 1

2.6.14

Linux Kernel 2.6.14 Release Candidate 2

2.6.14

Linux Kernel 2.6.14 Release Candidate 3

2.6.14

Linux Kernel 2.6.14 Release Candidate 4

2.6.14

Linux Kernel 2.6.14 Release Candidate 5

2.6.14

Linux Kernel 2.6.14.1

2.6.14.1

Linux Kernel 2.6.14.2

2.6.14.2

Linux Kernel 2.6.14.3

2.6.14.3

Linux Kernel 2.6.14.4

2.6.14.4

Linux Kernel 2.6.14.5

2.6.14.5

Linux Kernel 2.6.14.6

2.6.14.6

Linux Kernel 2.6.14.7

2.6.14.7

Linux Kernel 2.6.15

2.6.15

Linux Kernel 2.6.15 Release Candidate 1

2.6.15

Linux Kernel 2.6.15 Release Candidate 3

2.6.15

Linux Kernel 2.6.15 Release Candidate 4

2.6.15

Linux Kernel 2.6.15 Release Candidate 5

2.6.15

Linux Kernel 2.6.15 Release Candidate 6

2.6.15

Linux Kernel 2.6.15 Release Candidate 7

2.6.15

Linux Kernel 2.6.15.1

2.6.15.1

Linux Kernel 2.6.15.2

2.6.15.2

Linux Kernel 2.6.15.3

2.6.15.3

Linux Kernel 2.6.15.4

2.6.15.4

Linux Kernel 2.6.15.5

2.6.15.5

Linux Kernel 2.6.15.6

2.6.15.6

Linux Kernel 2.6.15.7

2.6.15.7

Linux Kernel 2.6.16

2.6.16

Linux Kernel 2.6.16 Release Candidate 1

2.6.16

Linux Kernel 2.6.16 Release Candidate 2

2.6.16

Linux Kernel 2.6.16 Release Candidate 3

2.6.16

Linux Kernel 2.6.16 Release Candidate 4

2.6.16

Linux Kernel 2.6.16 Release Candidate 5

2.6.16

Linux Kernel 2.6.16 Release Candidate 6

2.6.16

Linux Kernel 2.6.16.1

2.6.16.1

Linux Kernel 2.6.16.2

2.6.16.2

Linux Kernel 2.6.16.3

2.6.16.3

Linux Kernel 2.6.16.4

2.6.16.4

Linux Kernel 2.6.16.5

2.6.16.5

Linux Kernel 2.6.16.6

2.6.16.6

Linux Kernel 2.6.16.7

2.6.16.7

Linux Kernel 2.6.16.8

2.6.16.8

Linux Kernel 2.6.16.9

2.6.16.9

Linux Kernel 2.6.16.10

2.6.16.10

Linux Kernel 2.6.16.11

2.6.16.11

Linux Kernel 2.6.16.12

2.6.16.12

Linux Kernel 2.6.16.13

2.6.16.13

Linux Kernel 2.6.16.14

2.6.16.14

Linux Kernel 2.6.16.15

2.6.16.15

Linux Kernel 2.6.16.16

2.6.16.16

References

http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.18

Patch

20182

20225

Patch, Vendor Advisory

20716

21035

21136

21179

21498

21605

21983

22082

22093

22174

22822

1016153

http://support.avaya.com/elmodocs2/security/ASA-2006-180.htm

http://support.avaya.com/elmodocs2/security/ASA-2006-203.htm

DSA-1183

DSA-1184

VU#681569

US Government Resource

http://www.kernel.org/git/?p=linux/kernel/git/stable/linux-2.6.16.y.git;a=commit;h=1db6b5a66e93ff125ab871d6b3f7363412cc87e8

Patch

MDKSA-2006:087

SUSE-SA:2006:042

SUSE-SA:2006:047

SUSE-SA:2006:064

25750

RHSA-2006:0437

RHSA-2006:0580

RHSA-2006:0617

18081

USN-302-1

ADV-2006-1916

linux-snmp-nathelper-dos(26594)

oval:org.mitre.oval:def:11318

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.