V
Scaner-VS
ENRU
HomeCatalogSourcesCWECAPECATT&CKMitigationsDocs
Back to catalog
CVE-2007-5904
DEB
MediumConfirmedExploit available

Multiple buffer overflows in CIFS VFS in Linux kernel 2.6.23 and earlier allows remote attackers to cause a denial of service (crash) and p…

CVSS
6.8
Medium
EPSS
0.02
p83
Published
2007-01-01
Updated
2007-01-01
Description

Multiple buffer overflows in CIFS VFS in Linux kernel 2.6.23 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long SMB responses that trigger the overflows in the SendReceive function.

Tags · CWE
CWE-119
CAPEC-8
CAPEC-9
CAPEC-10
CAPEC-14
CAPEC-24
CAPEC-42
CAPEC-44
CAPEC-45
CAPEC-46
CAPEC-47
CAPEC-100
CAPEC-123
Affected products
Linux_kernel ≤ 2.6.23
CVSS vector
AV:A/AC:H/Au:N/C:C/I:C/A:C
Timeline
2007-01-01
Published
2007-01-01
Updated
CVSS 3.1 breakdown
Attack Vector
AV: A
Adjacent Network (A)
Attack Complexity
AC: H
High (H)
Authentication
Au: N
None (N)
Confidentiality Impact
C: C
Complete
Integrity Impact
I: C
Complete
Availability Impact
A: C
Complete
Exploit indicators
EPSS
0.020 · p83
Known exploited (KEV)
No
Known exploits — Сканер-ВС
30080
exploitdb · https://www.exploit-db.com/exploits/30080
Enterprise
30604
exploitdb · https://www.exploit-db.com/exploits/30604
Enterprise
30605
exploitdb · https://www.exploit-db.com/exploits/30605
Enterprise
4460
exploitdb · https://www.exploit-db.com/exploits/4460
Enterprise
6851
exploitdb · https://www.exploit-db.com/exploits/6851
Enterprise
7618
exploitdb · https://www.exploit-db.com/exploits/7618
Enterprise
CVE-2006-4814
github-poc · https://github.com/tagatac/linux-CVE-2006-4814
Enterprise
Affected software
ProductVendorStatus
kernelTracked
kernelTracked
linuxTracked
linux-2.6Tracked
linux-2.6.24Tracked
linux_kernel*Tracked
Source databases
DEB
CVE
RED
UBU