Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5087

Overview

Vulnerability Score 4.9 4.9
CVE Id CVE-2007-5087
Last Modified 07 Mar 2011 10:00:03
Published 26 Sep 2007 06:17:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2007-5087

Summary

The ATM module in the Linux kernel before 2.4.35.3, when CLIP support is enabled, allows local users to cause a denial of service (kernel panic) by reading /proc/net/atm/arp before the CLIP module has been loaded.

Vulnerable Systems

Operating System

  • Linux Kernel 2.4.35.2


References

VUPEN - ADV-2007-3246

OSVDB - 39237

CONFIRM - http://lwn.net/Articles/251162/

CONFIRM - http://kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.35.3

MISC - http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.4.35.y.git;a=commitdiff;h=b7ae15e7707050baafe5a35e3d4f2d175197d222

BID - 25798


Last Updated: 27 May 2016 10:46:04