Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0244

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2003-0244
Last Modified 10 Sep 2008 03:18:23
Published 27 May 2003 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-0244

Summary

The route cache implementation in Linux 2.4, and the Netfilter IP conntrack module, allows remote attackers to cause a denial of service (CPU consumption) via packets with forged source addresses that cause a large number of hash table collisions.

Vulnerable Systems

Operating System

  • Linux Kernel 2.4.0


References

REDHAT - RHSA-2003:145

DEBIAN - DSA-311

REDHAT - RHSA-2003:172

REDHAT - RHSA-2003:147

MISC - http://www.enyo.de/fw/security/notes/linux-dst-cache-dos.html

DEBIAN - DSA-442

DEBIAN - DSA-336

DEBIAN - DSA-332

DEBIAN - DSA-312

BUGTRAQ - 20030618 [slackware-security] 2.4.21 kernels available (SSA:2003-168-01)

ENGARDE - ESA-20030515-017

VULNWATCH - 20030517 Algorithmic Complexity Attacks and the Linux Networking Code

XF - data-algorithmic-complexity-dos(15382)

BID - 7601

SECUNIA - 8786

MANDRAKE - MDKSA-2003:074

MANDRAKE - MDKSA-2003:066

MISC - http://marc.theaimsgroup.com/?l=linux-kernel&m=104956079213417


Last Updated: 27 May 2016 10:37:50