Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2008-2812

Опубликовано: 09 июл. 2008
Источник: nvd
CVSS3: 7.8
CVSS2: 7.2
EPSS Низкий

Описание

The Linux kernel before 2.6.25.10 does not properly perform tty operations, which allows local users to cause a denial of service (system crash) or possibly gain privileges via vectors involving NULL pointer dereference of function pointers in (1) hamradio/6pack.c, (2) hamradio/mkiss.c, (3) irda/irtty-sir.c, (4) ppp_async.c, (5) ppp_synctty.c, (6) slip.c, (7) wan/x25_asy.c, and (8) wireless/strip.c in drivers/net/.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Версия до 2.6.25.10 (исключая)
Конфигурация 2

Одно из

cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:7.04:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:7.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:lts:*:*:*
Конфигурация 3

Одно из

cpe:2.3:o:novell:linux_desktop:9:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:10.3:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:11.0:*:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux_enterprise_desktop:10:sp1:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux_enterprise_desktop:10:sp2:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux_enterprise_server:10:sp1:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux_enterprise_server:10:sp2:*:*:*:*:*:*
Конфигурация 4
cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*
Конфигурация 5

Одно из

cpe:2.3:a:avaya:communication_manager:*:*:*:*:*:*:*:*
Версия от 3.1 (включая)
cpe:2.3:a:avaya:expanded_meet-me_conferencing:*:*:*:*:*:*:*:*
cpe:2.3:a:avaya:intuity_audix_lx:2.0:*:*:*:*:*:*:*
cpe:2.3:a:avaya:meeting_exchange:5.0:*:*:*:*:*:*:*
cpe:2.3:a:avaya:message_networking:3.1:*:*:*:*:*:*:*
cpe:2.3:a:avaya:messaging_storage_server:4.0:*:*:*:*:*:*:*
cpe:2.3:a:avaya:proactive_contact:4.0:*:*:*:*:*:*:*
cpe:2.3:a:avaya:sip_enablement_services:-:*:*:*:*:*:*:*
cpe:2.3:a:avaya:sip_enablement_services:4.0:*:*:*:*:*:*:*

EPSS

Процентиль: 17%
0.00054
Низкий

7.8 High

CVSS3

7.2 High

CVSS2

Дефекты

CWE-476

Связанные уязвимости

ubuntu логотип

CVE-2008-2812

CVSS3: 7.8
ubuntu
почти 17 лет назад

The Linux kernel before 2.6.25.10 does not properly perform tty operations, which allows local users to cause a denial of service (system crash) or possibly gain privileges via vectors involving NULL pointer dereference of function pointers in (1) hamradio/6pack.c, (2) hamradio/mkiss.c, (3) irda/irtty-sir.c, (4) ppp_async.c, (5) ppp_synctty.c, (6) slip.c, (7) wan/x25_asy.c, and (8) wireless/strip.c in drivers/net/.

redhat логотип

CVE-2008-2812

redhat
около 17 лет назад

The Linux kernel before 2.6.25.10 does not properly perform tty operations, which allows local users to cause a denial of service (system crash) or possibly gain privileges via vectors involving NULL pointer dereference of function pointers in (1) hamradio/6pack.c, (2) hamradio/mkiss.c, (3) irda/irtty-sir.c, (4) ppp_async.c, (5) ppp_synctty.c, (6) slip.c, (7) wan/x25_asy.c, and (8) wireless/strip.c in drivers/net/.

debian логотип

CVE-2008-2812

CVSS3: 7.8
debian
почти 17 лет назад

The Linux kernel before 2.6.25.10 does not properly perform tty operat ...

github логотип

GHSA-g469-pq25-x2qr

CVSS3: 7.8
github
около 3 лет назад

The Linux kernel before 2.6.25.10 does not properly perform tty operations, which allows local users to cause a denial of service (system crash) or possibly gain privileges via vectors involving NULL pointer dereference of function pointers in (1) hamradio/6pack.c, (2) hamradio/mkiss.c, (3) irda/irtty-sir.c, (4) ppp_async.c, (5) ppp_synctty.c, (6) slip.c, (7) wan/x25_asy.c, and (8) wireless/strip.c in drivers/net/.

oracle-oval логотип

ELSA-2008-0612

oracle-oval
почти 17 лет назад

ELSA-2008-0612: kernel security and bug fix update (IMPORTANT)

EPSS

Процентиль: 17%
0.00054
Низкий

7.8 High

CVSS3

7.2 High

CVSS2

Дефекты

CWE-476