| Vulnerability Name: | CVE-2005-3359 |
| Assigned: | 2005-12-14 |
| Published: | 2005-12-14 |
| Updated: | 2023-02-13 |
| Summary: | The atm module in Linux kernel 2.6 before 2.6.14 allows local users to cause a denial of service (panic) via certain socket calls that produce inconsistent reference counts for loadable protocol modules. |
| CVSS v3 Severity: | 6.2 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)| Exploitability Metrics: | Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None | | Scope: | Scope (S): Unchanged
| | Impact Metrics: | Confidentiality (C): None
Integrity (I): None
Availibility (A): High |
|
| CVSS v2 Severity: | 4.9 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C)| Exploitability Metrics: | Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None | | Impact Metrics: | Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete |
4.9 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C)| Exploitability Metrics: | Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
| | Impact Metrics: | Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete |
|
| References: | Source: MITRE
Type: CNA
CVE-2005-3359
Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com
Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com
Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com
Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com
Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com
Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com
Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com
Source: secalert@redhat.com
Type: Exploit, Patch, Vendor Advisory
secalert@redhat.com
Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com
Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com
|
| Vulnerable Configuration: | Configuration RedHat 1:
cpe:/o:redhat:enterprise_linux:4:*:*:*:*:*:*:*Configuration RedHat 2:
cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*Configuration RedHat 3:
cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*Configuration RedHat 4:
cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*Configuration RedHat 5:
cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*
 Denotes that component is vulnerable |
| Oval Definitions |
| Definition ID | Class | Title | Last Modified |
|---|
| oval:org.mitre.oval:def:10214 | V | The atm module in Linux kernel 2.6 before 2.6.14 allows local users to cause a denial of service (panic) via certain socket calls that produce inconsistent reference counts for loadable protocol modules. | 2013-04-29 | | oval:org.debian:def:1103 | V | several vulnerabilities | 2006-06-27 | | oval:com.redhat.rhsa:def:20060493 | P | RHSA-2006:0493: kernel security update (Important) | 2006-05-24 |
|
| BACK |