CVE-2013-2206 in Linuxinformation

Résumé

par MITRE

The sctp_sf_do_5_2_4_dupcook function in net/sctp/sm_statefuns.c in the SCTP implementation in the Linux kernel before 3.8.5 does not properly handle associations during the processing of a duplicate COOKIE ECHO chunk, which allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via crafted SCTP traffic.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Réserver

19/02/2013

Divulgation

04/07/2013

Modérer

accepté

Entrée

VDB-9251

CPE

prêt

EPSS

0.04707

KEV

non

Activités

très faible

Sources

Do you need the next level of professionalism?

Upgrade your account now!