Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0592


Vulnerability Score 5.0 5.0
CVE Id CVE-2004-0592
Last Modified 05 Sep 2008 04:38:50
Published 31 Dec 2004 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



The tcp_find_option function of the netfilter subsystem for IPv6 in the SUSE Linux 2.6.5 kernel with USAGI patches, when using iptables and TCP options rules, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a large option length that produces a negative integer after a casting operation to the char type, a similar flaw to CVE-2004-0626.

Vulnerable Systems

Operating System

  • Suse Linux 2.6.5


SUSE - SUSE-SA:2004:020

FULLDISC - 20040703 Re: SUSE Security Announcement: kernel (SUSE-SA:2004:020)

XF - linux-kernel-tcpfindoption-dos(43137)

Last Updated: 27 May 2016 10:38:40