Russian Vulnerability Scanner Database

Back to List

CVE-2005-2456

Scores

EPSS

0.000none0.0%
0%20%40%60%80%100%

Percentile: 0.0%

CVSS

5.5medium3.x
0246810

CVSS Score: 5.5/10

All CVSS Scores

CVSS 3.x
5.5

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CVSS 2.0
2.1

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P

Description

Array index overflow in the xfrm_sk_policy_insert function in xfrm_user.c in Linux kernel 2.6 allows local users to cause a denial of service (oops or deadlock) and possibly execute arbitrary code via a p->dir value that is larger than XFRM_POLICY_OUT, which is used as an index in the sock->sk_policy array.

Scaner-VS 7 — a modern vulnerability management solution

Uses this database for vulnerability detection. High-speed search, cross-platform, advanced configuration audit, and flexible filtering. Suitable for organizations of any size.
Learn more about Scaner-VS 7

Sources

debiannvd

CWEs

CWE-667

Related Vulnerabilities

BDU:2015-01293BDU:2015-02691BDU:2015-02692BDU:2015-02693BDU:2015-02694BDU:2015-02695BDU:2015-02696BDU:2015-02697BDU:2015-02698BDU:2015-02699BDU:2015-02700BDU:2015-02701BDU:2015-02702BDU:2015-02703BDU:2015-02704BDU:2015-02705BDU:2015-02706BDU:2015-02707BDU:2015-02708BDU:2015-02709BDU:2015-02710BDU:2015-02711BDU:2015-02712BDU:2015-02713BDU:2015-02714BDU:2015-02715BDU:2015-02716BDU:2015-02717BDU:2015-02718BDU:2015-02719BDU:2015-02720BDU:2015-02721BDU:2015-02722BDU:2015-02723BDU:2015-02724BDU:2015-02725BDU:2015-02726BDU:2015-02727BDU:2015-02728BDU:2015-02729BDU:2015-02730BDU:2015-02731BDU:2015-02732BDU:2015-02733BDU:2015-02734BDU:2015-02735BDU:2015-02736BDU:2015-02737BDU:2015-02738BDU:2015-02739BDU:2015-02740BDU:2015-02741BDU:2015-02742BDU:2015-02743BDU:2015-02744BDU:2015-02745BDU:2015-02746BDU:2015-02747BDU:2015-02748BDU:2015-02749BDU:2015-02750BDU:2015-02751BDU:2015-02752BDU:2015-02753BDU:2015-02754BDU:2015-02755BDU:2015-02756BDU:2015-02757BDU:2015-02758BDU:2015-02759BDU:2015-02760BDU:2015-02761BDU:2015-02762BDU:2015-02763BDU:2015-02764BDU:2015-02765BDU:2015-02766BDU:2015-02767BDU:2015-02768BDU:2015-02769BDU:2015-02770BDU:2015-02771BDU:2015-02772BDU:2015-02773BDU:2015-02774BDU:2015-02775BDU:2015-02776BDU:2015-02777BDU:2015-02778BDU:2015-02779BDU:2015-02780BDU:2015-02781BDU:2015-02782BDU:2015-02783

Vulnerable Software (4)

Type: Configuration

Product: kernel-source-2.4.27

Operating System: debian

Trait: 
{  "fixed": "2.4.27-11"}

Source: debian

Type: Configuration

Product: linux-2.6

Operating System: debian

Trait: 
{  "fixed": "2.6.12-2"}

Source: debian

Type: Configuration

Vendor: debian

Product: debian_linux

Operating System: * * *

Trait: 
{  "cpe_match": [    {      "cpe23uri": "cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*",      "vulnerable": true    }  ],  "operator": "OR"}

Source: nvd

Type: Configuration

Vendor: linux

Product: linux_kernel

Operating System: * * *

Trait: 
{  "cpe_match": [    {      "cpe23uri": "cpe:2.3:o:linux:linux_kernel:2.6.0:*:*:*:*:*:*:*",      "vulnerable": true    }  ],  "operator": "OR"}

Source: nvd