Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0643

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2003-0643
Last Modified 10 Sep 2008 03:20:01
Published 25 Jul 2003 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2003-0643

Summary

Integer signedness error in the Linux Socket Filter implementation (filter.c) in Linux 2.4.3-pre3 to 2.4.22-pre10 allows attackers to cause a denial of service (crash).

Vulnerable Systems

Operating System

  • Linux Kernel 2.4.10

  • Linux Kernel 2.4.11

  • Linux Kernel 2.4.12

  • Linux Kernel 2.4.13

  • Linux Kernel 2.4.14

  • Linux Kernel 2.4.15

  • Linux Kernel 2.4.16

  • Linux Kernel 2.4.17

  • Linux Kernel 2.4.18

  • Linux Kernel 2.4.19

  • Linux Kernel 2.4.2

  • Linux Kernel 2.4.20

  • Linux Kernel 2.4.21

  • Linux Kernel 2.4.22

  • Linux Kernel 2.4.3

  • Linux Kernel 2.4.4

  • Linux Kernel 2.4.5

  • Linux Kernel 2.4.6

  • Linux Kernel 2.4.7

  • Linux Kernel 2.4.8

  • Linux Kernel 2.4.9


References

MISC - http://www.ultramonkey.org/bugs/cve/CAN-2003-0643.shtml

MISC - http://www.ultramonkey.org/bugs/cve-patch/CAN-2003-0643.patch

CONFIRM - http://gentoo.kems.net/gentoo-x86-portage/sys-kernel/gentoo-sources/ChangeLog

CONFIRM - http://www.xerox.com/downloads/usa/en/c/cert_XRX06_004_v11.pdf

SECUNIA - 23265


Last Updated: 27 May 2016 10:38:00