Vulnerability Name: | CVE-2007-6063 (CCN-38777) | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Assigned: | 2007-11-20 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Published: | 2007-11-20 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Updated: | 2017-09-29 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Summary: | Buffer overflow in the isdn_net_setcfg function in isdn_net.c in Linux kernel 2.6.23 allows local users to have an unknown impact via a crafted argument to the isdn_ioctl function. | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
CVSS v3 Severity: | 5.9 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
CVSS v2 Severity: | 6.9 Medium (CVSS v2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C) 5.6 Medium (Temporal CVSS v2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:U/RC:UR)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:U/RC:UR)
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Vulnerability Type: | CWE-119 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Vulnerability Consequences: | Gain Access | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
References: | Source: CCN Type: Kernel Bug Tracker Bug 9416 Linux Kernel isdn_net_setcfg buffer overflow Source: CONFIRM Type: UNKNOWN http://bugzilla.kernel.org/show_bug.cgi?id=9416 Source: MITRE Type: CNA CVE-2007-6063 Source: SUSE Type: UNKNOWN SUSE-SA:2007:064 Source: SUSE Type: UNKNOWN SUSE-SA:2008:006 Source: CCN Type: RHSA-2008-0055 Important: kernel security and bug fix update Source: REDHAT Type: UNKNOWN RHSA-2008:0055 Source: CCN Type: RHSA-2008-0154 Important: kernel security and bug fix update Source: CCN Type: RHSA-2008-0787 Important: kernel security update Source: CCN Type: RHSA-2008-0973 Important: kernel security and bug fix update Source: CCN Type: RHSA-2009-0001 Important: kernel security update Source: CCN Type: SA27842 Linux Kernel "isdn_net_setcfg()" Buffer Overflow Vulnerability Source: SECUNIA Type: UNKNOWN 27842 Source: SECUNIA Type: UNKNOWN 27912 Source: SECUNIA Type: UNKNOWN 28141 Source: SECUNIA Type: UNKNOWN 28706 Source: SECUNIA Type: UNKNOWN 28748 Source: SECUNIA Type: UNKNOWN 28806 Source: SECUNIA Type: UNKNOWN 28971 Source: SECUNIA Type: UNKNOWN 29058 Source: SECUNIA Type: UNKNOWN 29236 Source: SECUNIA Type: UNKNOWN 33201 Source: SECUNIA Type: UNKNOWN 33280 Source: CCN Type: ASA-2008-102 kernel security and bug fix update (RHSA-2008-0055) Source: CCN Type: ASA-2009-005 kernel security update (RHSA-2009-0001) Source: CCN Type: ASA-2009-035 kernel security update (RHSA-2008-0787) Source: DEBIAN Type: UNKNOWN DSA-1436 Source: DEBIAN Type: UNKNOWN DSA-1503 Source: DEBIAN Type: UNKNOWN DSA-1504 Source: DEBIAN Type: DSA-1436 linux-2.6 -- several vulnerabilities Source: DEBIAN Type: DSA-1503 kernel-source-2.4.27 -- several vulnerabilities Source: DEBIAN Type: DSA-1504 kernel-source-2.6.8 -- several vulnerabilities Source: CCN Type: The Linux Kernel Archives Web site The Linux Kernel Archives Source: MANDRIVA Type: UNKNOWN MDVSA-2008:008 Source: MANDRIVA Type: UNKNOWN MDVSA-2008:112 Source: REDHAT Type: UNKNOWN RHSA-2008:0154 Source: REDHAT Type: UNKNOWN RHSA-2008:0787 Source: REDHAT Type: UNKNOWN RHSA-2008:0973 Source: BID Type: UNKNOWN 26605 Source: CCN Type: BID-26605 Linux Kernel ISDN_Net.C Local Buffer Overflow Vulnerability Source: CCN Type: USN-574-1 Linux kernel vulnerabilities Source: UBUNTU Type: UNKNOWN USN-574-1 Source: CCN Type: USN-578-1 Linux kernel vulnerabilities Source: UBUNTU Type: UNKNOWN USN-578-1 Source: VUPEN Type: UNKNOWN ADV-2007-4046 Source: XF Type: UNKNOWN linux-kernel-isdnnetsetcfg-bo(38777) Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:6514 Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:9846 Source: SUSE Type: SUSE-SA:2007:064 Linux kernel security problems | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Vulnerable Configuration: | Configuration 1: Configuration RedHat 1: Configuration RedHat 2: Configuration RedHat 3: Configuration RedHat 4: Configuration RedHat 5: Configuration RedHat 6: Configuration RedHat 7: Configuration RedHat 8: Configuration CCN 1: ![]() | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Oval Definitions | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
BACK |