Vulnerability Name:

CVE-2005-0209 (CCN-19365)

Assigned:2005-01-24
Published:2005-01-24
Updated:2017-10-11
Summary:Netfilter in Linux kernel 2.6.8.1 allows remote attackers to cause a denial of service (kernel crash) via crafted IP packet fragments.
CVSS v3 Severity:7.5 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): High
CVSS v2 Severity:7.8 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C)
5.8 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete
7.1 High (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C)
5.3 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete
Vulnerability Type:CWE-20
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2005-0209

Source: CONECTIVA
Type: Patch
CLA-2005:945

Source: BUGTRAQ
Type: UNKNOWN
20050315 [USN-95-1] Linux kernel vulnerabilities

Source: CCN
Type: RHSA-2005-420
Updated kernel packages available for Red Hat Enterprise Linux 4 Update 1

Source: CCN
Type: CIAC INFORMATION BULLETIN P-188
Security Vulnerabilities Addressed in Red Hat Kernel Update

Source: CCN
Type: The The Linux Kernel Archives Web site
The Linux Kernel Archives

Source: SUSE
Type: Patch, Vendor Advisory
SUSE-SA:2005:018

Source: CCN
Type: OSVDB ID: 14965
Linux Kernel Netfliter IP Packet Fragment DoS

Source: REDHAT
Type: UNKNOWN
RHSA-2005:366

Source: REDHAT
Type: UNKNOWN
RHSA-2005:420

Source: BID
Type: UNKNOWN
12598

Source: CCN
Type: BID-12598
Linux Kernel Multiple Vulnerabilities

Source: CCN
Type: USN-95-1
Linux kernel vulnerabilities

Source: XF
Type: UNKNOWN
kernel-netfilter-iptable-bypass(19365)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:11855

Source: SUSE
Type: SUSE-SA:2005:018
kernel: remote denial of service

Vulnerable Configuration:Configuration 1:
  • cpe:/o:linux:linux_kernel:2.6.8.1:*:*:*:*:*:*:*

    • Configuration RedHat 1:
  • cpe:/o:redhat:enterprise_linux:*:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:linux:linux_kernel:2.6.8.1:*:*:*:*:*:*:*
  • AND
  • cpe:/o:suse:suse_linux:8.1:*:*:*:*:*:*:*
  • OR cpe:/o:suse:linux_enterprise_server:8:*:*:*:*:*:*:*
  • OR cpe:/a:mandrakesoft:mandrake_multi_network_firewall:8.2:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:2.1:*:*:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:8.2:*:*:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:9.0:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:10.0:*:*:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:9.1:*:*:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:9.2:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:10.1:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:3.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*
  • OR cpe:/o:novell:linux_desktop:9:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*
  • OR cpe:/a:mandrakesoft:mandrake_multi_network_firewall:2.0:*:*:*:*:*:*:*
  • OR cpe:/o:suse:linux_enterprise_server:9:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:10.1::x86-64:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:3.0::x86_64:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:10.0::amd64:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:2.1::x86_64:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20050209
    V
    		CVE-2005-0209
    2015-11-16
    oval:org.mitre.oval:def:11855
    V
    		The directory-services functionality in the scheduler in CUPS 1.1.17 and 1.1.22 allows remote attackers to cause a denial of service (cupsd daemon outage or crash) via manipulations of the timing of CUPS browse packets, related to a "pointer use-after-delete flaw."
    2013-04-29
    oval:com.redhat.rhsa:def:20050420
    P
    		RHSA-2005:420: Updated kernel packages available for Red Hat Enterprise Linux 4 Update 1 (Important)
    2005-08-09
    BACK
    linux linux kernel 2.6.8.1
    linux linux kernel 2.6.8.1
    suse suse linux 8.1
    suse linux enterprise server 8
    mandrakesoft mandrake multi network firewall 8.2
    mandrakesoft mandrake linux corporate server 2.1
    suse suse linux 8.2
    suse suse linux 9.0
    mandrakesoft mandrake linux 10.0
    suse suse linux 9.1
    suse suse linux 9.2
    mandrakesoft mandrake linux 10.1
    mandrakesoft mandrake linux corporate server 3.0
    redhat enterprise linux 4
    redhat enterprise linux 4
    novell linux desktop 9
    redhat enterprise linux 4
    redhat enterprise linux 4
    mandrakesoft mandrake multi network firewall 2.0
    suse linux enterprise server 9
    mandrakesoft mandrake linux 10.1
    mandrakesoft mandrake linux corporate server 3.0
    mandrakesoft mandrake linux 10.0
    mandrakesoft mandrake linux corporate server 2.1