Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-4639

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2005-4639
Last Modified 07 Mar 2011 09:28:43
Published 31 Dec 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-4639

Summary

Buffer overflow in the CA-driver (dst_ca.c) for TwinHan DST Frontend/Card in Linux kernel 2.6.12 and other versions before 2.6.15 allows local users to cause a denial of service (crash) and possibly execute arbitrary code by "reading more than 8 bytes into an 8 byte long array".

Vulnerable Systems

Operating System

  • Linux Kernel 2.6.12

  • Linux Kernel 2.6.12.1

  • Linux Kernel 2.6.12.2

  • Linux Kernel 2.6.12.3

  • Linux Kernel 2.6.12.4

  • Linux Kernel 2.6.12.5

  • Linux Kernel 2.6.12.6

  • Linux Kernel 2.6.13

  • Linux Kernel 2.6.13.1

  • Linux Kernel 2.6.13.2

  • Linux Kernel 2.6.13.3

  • Linux Kernel 2.6.13.4

  • Linux Kernel 2.6.14

  • Linux Kernel 2.6.14.1

  • Linux Kernel 2.6.14.2

  • Linux Kernel 2.6.14.3


References

UBUNTU - USN-244-1

BID - 16142

SECUNIA - 18527

SECUNIA - 18216

VUPEN - ADV-2006-0035

CONFIRM - http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.15

XF - linux-kernel-cadriver-bo(43323)

MANDRIVA - MDKSA-2006:040


Last Updated: 27 May 2016 10:41:22