CVE-2010-4526

Published Jan 11, 2011

Last updated 2 years ago

Overview

Description: Race condition in the sctp_icmp_proto_unreachable function in net/sctp/input.c in Linux kernel 2.6.11-rc2 through 2.6.33 allows remote attackers to cause a denial of service (panic) via an ICMP unreachable message to a socket that is already locked by a user, which causes the socket to be freed and triggers list corruption, related to the sctp_wait_for_connect function.
Source: secalert@redhat.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.1
Impact score: 6.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: CWE-362

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D1B2D05E-354E-4EBF-BC0D-2ABC8CCD36E6",
            "versionEndIncluding": "2.6.33",
            "versionStartIncluding": "2.6.11.1"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.11:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2422569B-02ED-4028-83D8-D778657596B7"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.11:rc3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E66E4653-1A55-4827-888B-E0776E32ED28"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.11:rc4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6C8994CB-7F94-43FB-8B84-06AEBB34EAE0"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.11:rc5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "95DD4647-564E-4067-A945-F52232C0A33A"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_mrg:1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CB4E172C-4FBD-40AA-91F1-2858A74C5483"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:vmware:esx:4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BC337BB7-9A45-4406-A783-851F279130EE"
          },
          {
            "criteria": "cpe:2.3:o:vmware:esx:4.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0B6BA46F-4E8C-4B2A-AE92-81B9F1B4D56C"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References