Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0454

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2006-0454
Last Modified 19 Mar 2012 12:00:00
Published 07 Feb 2006 01:06:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0454

Summary

Linux kernel before 2.6.15.3 down to 2.6.12, while constructing an ICMP response in icmp_send, does not properly handle when the ip_options_echo function in icmp.c fails, which allows remote attackers to cause a denial of service (crash) via vectors such as (1) record-route and (2) timestamp IP options with the needaddr bit set and a truncated value.

Vulnerable Systems

Operating System

  • Linux Kernel 2.6.12

  • Linux Kernel 2.6.12.1

  • Linux Kernel 2.6.12.2

  • Linux Kernel 2.6.12.3

  • Linux Kernel 2.6.12.4

  • Linux Kernel 2.6.12.5

  • Linux Kernel 2.6.12.6

  • Linux Kernel 2.6.13

  • Linux Kernel 2.6.13.1

  • Linux Kernel 2.6.13.2

  • Linux Kernel 2.6.13.3

  • Linux Kernel 2.6.13.4

  • Linux Kernel 2.6.13.5

  • Linux Kernel 2.6.14

  • Linux Kernel 2.6.14.1

  • Linux Kernel 2.6.14.2

  • Linux Kernel 2.6.14.3

  • Linux Kernel 2.6.14.4

  • Linux Kernel 2.6.14.5

  • Linux Kernel 2.6.14.6

  • Linux Kernel 2.6.14.7

  • Linux Kernel 2.6.15

  • Linux Kernel 2.6.15.1

  • Linux Kernel 2.6.15.2


References

BID - 16532

FEDORA - FLSA:157459-4

FEDORA - FEDORA-2006-102

SUSE - SUSE-SA:2006:006

SECUNIA - 18861

SECUNIA - 18788

SECUNIA - 18784

SECUNIA - 18774

SECUNIA - 18766

MLIST - [dailydave] 20060207 Fun with Linux (2.6.12 -> 2.6.15.2)

XF - kernel-icmp-ipoptionsecho-dos(24575)

VUPEN - ADV-2006-0464

UBUNTU - USN-250-1

TRUSTIX - 2006-0006

MANDRIVA - MDKSA-2006:040

CONFIRM - http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.15.3

MLIST - [linux-kernel] 20060207 Re: Linux 2.6.15.3

MLIST - [linux-kernel] 20060207 Linux 2.6.15.3


Last Updated: 27 May 2016 10:57:28