Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3745

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2006-3745
Last Modified 19 Mar 2012 12:00:00
Published 23 Aug 2006 03:04:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2006-3745

Summary

Unspecified vulnerability in the sctp_make_abort_user function in the SCTP implementation in Linux 2.6.x before 2.6.17.10 and 2.4.23 up to 2.4.33 allows local users to cause a denial of service (panic) and possibly gain root privileges via unknown attack vectors.

Vulnerable Systems

Operating System

  • Linux Kernel 2.4.23

  • Linux Kernel 2.4.24

  • Linux Kernel 2.4.25

  • Linux Kernel 2.4.26

  • Linux Kernel 2.4.27

  • Linux Kernel 2.4.28

  • Linux Kernel 2.4.29

  • Linux Kernel 2.4.30

  • Linux Kernel 2.4.31

  • Linux Kernel 2.4.32

  • Linux Kernel 2.4.33

  • Linux Kernel 2.6.0

  • Linux Kernel 2.6.1

  • Linux Kernel 2.6.10

  • Linux Kernel 2.6.11

  • Linux Kernel 2.6.11.1

  • Linux Kernel 2.6.11.10

  • Linux Kernel 2.6.11.11

  • Linux Kernel 2.6.11.12

  • Linux Kernel 2.6.11.2

  • Linux Kernel 2.6.11.3

  • Linux Kernel 2.6.11.4

  • Linux Kernel 2.6.11.5

  • Linux Kernel 2.6.11.6

  • Linux Kernel 2.6.11.7

  • Linux Kernel 2.6.11.8

  • Linux Kernel 2.6.11.9

  • Linux Kernel 2.6.12

  • Linux Kernel 2.6.12.1

  • Linux Kernel 2.6.12.2

  • Linux Kernel 2.6.12.3

  • Linux Kernel 2.6.12.4

  • Linux Kernel 2.6.12.5

  • Linux Kernel 2.6.12.6

  • Linux Kernel 2.6.13

  • Linux Kernel 2.6.13.1

  • Linux Kernel 2.6.13.2

  • Linux Kernel 2.6.13.3

  • Linux Kernel 2.6.13.4

  • Linux Kernel 2.6.13.5

  • Linux Kernel 2.6.14

  • Linux Kernel 2.6.14.1

  • Linux Kernel 2.6.14.2

  • Linux Kernel 2.6.14.3

  • Linux Kernel 2.6.14.4

  • Linux Kernel 2.6.14.5

  • Linux Kernel 2.6.14.6

  • Linux Kernel 2.6.14.7

  • Linux Kernel 2.6.15

  • Linux Kernel 2.6.15.1

  • Linux Kernel 2.6.15.2

  • Linux Kernel 2.6.15.3

  • Linux Kernel 2.6.15.4

  • Linux Kernel 2.6.15.5

  • Linux Kernel 2.6.15.6

  • Linux Kernel 2.6.15.7

  • Linux Kernel 2.6.16

  • Linux Kernel 2.6.16.1

  • Linux Kernel 2.6.16.10

  • Linux Kernel 2.6.16.11

  • Linux Kernel 2.6.16.12

  • Linux Kernel 2.6.16.13

  • Linux Kernel 2.6.16.14

  • Linux Kernel 2.6.16.15

  • Linux Kernel 2.6.16.16

  • Linux Kernel 2.6.16.17

  • Linux Kernel 2.6.16.18

  • Linux Kernel 2.6.16.19

  • Linux Kernel 2.6.16.2

  • Linux Kernel 2.6.16.20

  • Linux Kernel 2.6.16.21

  • Linux Kernel 2.6.16.22

  • Linux Kernel 2.6.16.23

  • Linux Kernel 2.6.16.24

  • Linux Kernel 2.6.16.25

  • Linux Kernel 2.6.16.26

  • Linux Kernel 2.6.16.27

  • Linux Kernel 2.6.16.28

  • Linux Kernel 2.6.16.29

  • Linux Kernel 2.6.16.3

  • Linux Kernel 2.6.16.30

  • Linux Kernel 2.6.16.31

  • Linux Kernel 2.6.16.4

  • Linux Kernel 2.6.16.5

  • Linux Kernel 2.6.16.6

  • Linux Kernel 2.6.16.7

  • Linux Kernel 2.6.16.8

  • Linux Kernel 2.6.16.9

  • Linux Kernel 2.6.17

  • Linux Kernel 2.6.17.1

  • Linux Kernel 2.6.17.2

  • Linux Kernel 2.6.17.3

  • Linux Kernel 2.6.17.4

  • Linux Kernel 2.6.17.5

  • Linux Kernel 2.6.17.6

  • Linux Kernel 2.6.17.7

  • Linux Kernel 2.6.17.8

  • Linux Kernel 2.6.17.9


References

REDHAT - RHSA-2006:0617

SECUNIA - 21605

CONFIRM - https://issues.rpath.com/browse/RPL-611

XF - kernel-sctp-privilege-escalation(28530)

VUPEN - ADV-2006-3358

UBUNTU - USN-346-1

BID - 19666

BUGTRAQ - 20060831 rPSA-2006-0162-1 kernel

BUGTRAQ - 20060822 Linux Kernel SCTP Privilege Elevation Vulnerability

SUSE - SUSE-SA:2006:057

SUSE - SUSE-SR:2006:022

SUSE - SUSE-SR:2006:021

MANDRIVA - MDKSA-2007:025

MANDRIVA - MDKSA-2006:151

MANDRIVA - MDKSA-2006:150

DEBIAN - DSA-1184

DEBIAN - DSA-1183

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2006-203.htm

SECUNIA - 22174

SECUNIA - 22148

SECUNIA - 22093

SECUNIA - 22082

SECUNIA - 21934

SECUNIA - 21847

SECUNIA - 21695

SECUNIA - 21614

SECUNIA - 21576

CONFIRM - http://kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.33.2


Last Updated: 27 May 2016 10:59:54