| Vulnerability Name: | CVE-2003-0364 (CCN-12160) | ||||||||||||||||||||||||||||
| Assigned: | 2003-06-03 | ||||||||||||||||||||||||||||
| Published: | 2003-06-03 | ||||||||||||||||||||||||||||
| Updated: | 2017-10-11 | ||||||||||||||||||||||||||||
| Summary: | The TCP/IP fragment reassembly handling in the Linux kernel 2.4 allows remote attackers to cause a denial of service (CPU consumption) via certain packets that cause a large number of hash table collisions. | ||||||||||||||||||||||||||||
| CVSS v3 Severity: | 5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
| ||||||||||||||||||||||||||||
| CVSS v2 Severity: | 5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
| ||||||||||||||||||||||||||||
| Vulnerability Type: | CWE-Other | ||||||||||||||||||||||||||||
| Vulnerability Consequences: | Denial of Service | ||||||||||||||||||||||||||||
| References: | Source: MITRE Type: CNA CVE-2003-0364 Source: CCN Type: Conectiva Linux Security Announcement CLSA-2003:702 kernel Source: CCN Type: Conectiva Linux Security Announcement CLSA-2003:796 kernel Source: CCN Type: RHSA-2003-187 Updated 2.4 kernel fixes vulnerabilities and driver bugs Source: CCN Type: RHSA-2003-190 Updated 2.4 kernel for pSeries and iSeries fixes vulnerabilities Source: CCN Type: RHSA-2003-195 kernel security update Source: CCN Type: RHSA-2003-198 kernel security update Source: DEBIAN Type: Patch, Vendor Advisory DSA-311 Source: DEBIAN Type: UNKNOWN DSA-312 Source: DEBIAN Type: UNKNOWN DSA-332 Source: DEBIAN Type: UNKNOWN DSA-336 Source: DEBIAN Type: UNKNOWN DSA-442 Source: DEBIAN Type: DSA-311 linux-kernel-2.4.18 -- several vulnerabilities Source: DEBIAN Type: DSA-312 kernel-patch-2.4.18-powerpc -- several vulnerabilities Source: DEBIAN Type: DSA-332 linux-kernel-2.4.17 -- several vulnerabilities Source: DEBIAN Type: DSA-336 linux-kernel-2.2.20 -- several vulnerabilities Source: DEBIAN Type: DSA-442 linux-kernel-2.4.17-s390 -- several vulnerabilities Source: REDHAT Type: Patch, Vendor Advisory RHSA-2003:187 Source: REDHAT Type: UNKNOWN RHSA-2003:195 Source: REDHAT Type: UNKNOWN RHSA-2003:198 Source: CCN Type: BID-7797 Linux Kernel Fragment Reassembly Remote Denial Of Service Vulnerability Source: CCN Type: TLSA-2003-41 Multiple vulnerabilities in kernel Source: TURBO Type: Vendor Advisory TLSA-2003-41 Source: XF Type: UNKNOWN linux-kernel-packets-dos(12160) Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:295 | ||||||||||||||||||||||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||||||||||||||||||||||
| Oval Definitions | |||||||||||||||||||||||||||||
| |||||||||||||||||||||||||||||
| BACK | |||||||||||||||||||||||||||||