Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0039

Overview

Vulnerability Score 4.7 4.7
CVE Id CVE-2006-0039
Last Modified 07 Mar 2011 09:29:12
Published 19 May 2006 06:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity HIGH
Authentication NONE

CVE-2006-0039

Summary

Race condition in the do_add_counters function in netfilter for Linux kernel 2.6.16 allows local users with CAP_NET_ADMIN capabilities to read kernel memory by triggering the race condition in a way that produces a size value that is inconsistent with allocated memory, which leads to a buffer over-read in IPT_ENTRY_ITERATE.

Vulnerable Systems

Operating System

  • Linux Kernel 2.6.16


References

MISC - http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=2722971cbe831117686039d5c334f2c0f560be13

CONFIRM - http://bugs.gentoo.org/show_bug.cgi?id=133465

CONFIRM - https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=191698

XF - linux-doaddcounters-race-condition(26583)

VUPEN - ADV-2006-2554

VUPEN - ADV-2006-1893

UBUNTU - USN-311-1

BID - 18113

REDHAT - RHSA-2006:0689

OSVDB - 25697

DEBIAN - DSA-1103

DEBIAN - DSA-1097

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2006-249.htm

SECUNIA - 22945

SECUNIA - 22292

SECUNIA - 21476

SECUNIA - 20991

SECUNIA - 20914

SECUNIA - 20671

SECUNIA - 20185

CONFIRM - http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.17


Last Updated: 27 May 2016 10:41:30