Executive Summary
| Summary | |
|---|---|
| Title | New iproute packages fix denial of service |
| Informations | |||
|---|---|---|---|
| Name | DSA-492 | First vendor Publication | 2004-04-18 |
| Vendor | Debian | Last vendor Modification | 2004-04-18 |
| Severity (Vendor) | N/A | Revision | 1 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:L/AC:L/Au:N/C:N/I:N/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 4.9 | Attack Range | Local |
| Cvss Impact Score | 6.9 | Attack Complexity | Low |
| Cvss Expoit Score | 3.9 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Herbert Xu reported that local users could cause a denial of service against iproute, a set of tools for controlling networking in Linux kernels. iproute uses the netlink interface to communicate with the kernel, but failed to verify that the messages it received came from the kernel (rather than from other user processes). For the current stable distribution (woody) this problem has been fixed in version 20010824-8woody1. For the unstable distribution (sid), this problem will be fixed soon. We recommend that you update your iproute package. |
Original Source
| Url : http://www.debian.org/security/2004/dsa-492 |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:10912 | |||
| Oval ID: | oval:org.mitre.oval:def:10912 | ||
| Title: | iproute 2.4.7 and earlier allows local users to cause a denial of service via spoofed messages as other users to the kernel netlink interface. | ||
| Description: | iproute 2.4.7 and earlier allows local users to cause a denial of service via spoofed messages as other users to the kernel netlink interface. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2003-0856 | Version: | 5 |
| Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 | Product(s): | |
| Definition Synopsis: | |||
OpenVAS Exploits
| Date | Description |
|---|---|
| 2008-09-24 | Name : Gentoo Security Advisory GLSA 200404-10 () File : nvt/glsa_200404_10.nasl |
| 2008-01-17 | Name : Debian Security Advisory DSA 492-1 (iproute) File : nvt/deb_492_1.nasl |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 6594 | Linux Kernel iproute Netlink Interface Spoofed Message Local DoS |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2004-12-14 | Name : The remote Mandrake Linux host is missing a security update. File : mandrake_MDKSA-2004-148.nasl - Type : ACT_GATHER_INFO |
| 2004-09-29 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-492.nasl - Type : ACT_GATHER_INFO |
| 2004-08-30 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200404-10.nasl - Type : ACT_GATHER_INFO |
| 2004-07-23 | Name : The remote Fedora Core host is missing a security update. File : fedora_2004-115.nasl - Type : ACT_GATHER_INFO |
| 2004-07-06 | Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2003-317.nasl - Type : ACT_GATHER_INFO |
Alert History
| Date | Informations |
|---|---|
| 2014-02-17 11:33:15 |
|
