CVE-2006-2934

Scores

EPSS

0.233low23.3%

0%20%40%60%80%100%

Percentile: 23.3%

CVSS

5.0medium2.0

0246810

CVSS Score: 5.0/10

All CVSS Scores

CVSS 2.0

5.0

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Description

SCTP conntrack (ip_conntrack_proto_sctp.c) in netfilter for Linux kernel 2.6.17 before 2.6.17.3 and 2.6.16 before 2.6.16.23 allows remote attackers to cause a denial of service (crash) via a packet without any chunks, which causes a variable to contain an invalid value that is later used to dereference a pointer.

Scaner-VS 7 — a modern vulnerability management solution

Uses this database for vulnerability detection. High-speed search, cross-platform, advanced configuration audit, and flexible filtering. Suitable for organizations of any size.

Learn more about Scaner-VS 7

Sources

debiannvdredhat

CWEs

CWE-399

Related Vulnerabilities

BDU:2015-04819 BDU:2015-04820 BDU:2015-04821 BDU:2015-04822 BDU:2015-04823 BDU:2015-04824 BDU:2015-04825 BDU:2015-04826 BDU:2015-04827 BDU:2015-04828 BDU:2015-04829 BDU:2015-04830 BDU:2015-04831 BDU:2015-04832 BDU:2015-04833 BDU:2015-04834 BDU:2015-04835 BDU:2015-04836 BDU:2015-04837 BDU:2015-04838 BDU:2015-04839 BDU:2015-04840 BDU:2015-04841 BDU:2015-04842 BDU:2015-04843 BDU:2015-04844 BDU:2015-04845 BDU:2015-04846 BDU:2015-04847 BDU:2015-04848 BDU:2015-04849 BDU:2015-04850 BDU:2015-04851 BDU:2015-04852 BDU:2015-04853 BDU:2015-04854 BDU:2015-04855 BDU:2015-04856 BDU:2015-04857 BDU:2015-04858 BDU:2015-04859 BDU:2015-04860 BDU:2015-04861 BDU:2015-04862 BDU:2015-04863 BDU:2015-04864 BDU:2015-04865 BDU:2015-04866 BDU:2015-04867 BDU:2015-04868 BDU:2015-04869 BDU:2015-04870 BDU:2015-04871 BDU:2015-04872 BDU:2015-04873 BDU:2015-04874 BDU:2015-04875 BDU:2015-04876 BDU:2015-04877 BDU:2015-04878 BDU:2015-04879

Exploits

Exploit ID: 1880

Source: exploitdb

URL: https://www.exploit-db.com/exploits/1880

Exploit ID: 2004

Source: exploitdb

URL: https://www.exploit-db.com/exploits/2004

Exploit ID: 2005

Source: exploitdb

URL: https://www.exploit-db.com/exploits/2005

Exploit ID: 2006

Source: exploitdb

URL: https://www.exploit-db.com/exploits/2006

Exploit ID: 2011

Source: exploitdb

URL: https://www.exploit-db.com/exploits/2011

Exploit ID: 2031

Source: exploitdb

URL: https://www.exploit-db.com/exploits/2031

Vulnerable Software (3)

Type: Configuration

Product: kernel

Operating System: rhel 4

Trait:

{  "fixed": "2.6.9-42.EL"}

Source: redhat

Type: Configuration

Product: linux-2.6

Operating System: debian

Trait:

{  "fixed": "2.6.17-3"}

Source: debian

Type: Configuration

Vendor: *

Product: linux_kernel

Operating System: * * *

Trait:

{  "cpe_match": [    {      "cpe23uri": "cpe:2.3:o:linux:linux_kernel:2.6.16:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.1:*:*:*:*:*...

{  "cpe_match": [    {      "cpe23uri": "cpe:2.3:o:linux:linux_kernel:2.6.16:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.1:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.2:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.10:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.11:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.12:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.13:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.14:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.15:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.16:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.17:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.18:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.19:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.20:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.21:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.22:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:linux:linux_kernel:2.6.17:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.1:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.2:*:*:*:*:*:*:*",      "vulnerable": true    }  ],  "operator": "OR"}

Source: nvd

End of list

Russian Vulnerability Scanner Database

CVE-2006-2934

Scores

EPSS

CVSS

All CVSS Scores

Vector Breakdown

CVSS

Attack Vector

Attack Complexity

Authentication

Confidentiality Impact

Integrity Impact

Availability Impact

Description

Scaner-VS 7 — a modern vulnerability management solution

Sources

CWEs

Related Vulnerabilities

Exploits

Vulnerable Software (3)