CVE-2014-0101

Published Mar 11, 2014
Last updated 3 months ago
CVSS info 7.8
Overview

Description: The sctp_sf_do_5_1D_ce function in net/sctp/sm_statefuns.c in the Linux kernel through 3.13.6 does not validate certain auth_enable and auth_capable fields before making an sctp_sf_authenticate call, which allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) via an SCTP handshake with a modified INIT chunk and a crafted AUTH chunk before a COOKIE_ECHO chunk.
Source: secalert@redhat.com
NVD status: Modified
Risk scores

CVSS 2.0

Type: Primary
Base score: 7.8
Impact score: 6.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:C
Weaknesses

nvd@nist.gov: CWE-476
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A0E9005C-26CB-4056-8F6B-98C7FDF2F7B9",
            "versionEndExcluding": "3.2.56",
            "versionStartIncluding": "2.6.24"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2869AF87-7E94-4E08-8EF9-8C62F663EC82",
            "versionEndExcluding": "3.4.84",
            "versionStartIncluding": "3.3"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "67836467-8BEF-44A1-B031-98EFBA19F38C",
            "versionEndExcluding": "3.10.34",
            "versionStartIncluding": "3.5"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4AE2B033-586E-48AC-95DC-880018601DFC",
            "versionEndExcluding": "3.12.15",
            "versionStartIncluding": "3.11"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B13865A2-6E9A-4FFE-A1C2-02B75D66C207",
            "versionEndExcluding": "3.13.7",
            "versionStartIncluding": "3.13"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_eus:6.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8382A145-CDD9-437E-9DE7-A349956778B3"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_eus:6.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8A8E07B7-3739-4BEB-88F8-C7F62431E889"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_eus:6.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "569964DA-31BE-4520-A66D-C3B09D557AB8"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9BBCD86A-E6C7-4444-9D74-F861084090F0"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:6.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AF83BB87-B203-48F9-9D06-48A5FE399050"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:6.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1F3BEFDB-5156-4E1C-80BB-8BE9FEAA7623"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:6.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "835AE071-CEAE-49E5-8F0C-E5F50FB85EFC"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E5ED5807-55B7-47C5-97A6-03233F4FBC3A"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "01EDA41C-6B2E-49AF-B503-EB3882265C11"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F876CB01-E4E3-461B-BF67-F993D3C058B9",
            "versionEndIncluding": "11.5.3",
            "versionStartIncluding": "11.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AF513AF7-A3D9-46E0-BDCF-A4C9F6DDE83E",
            "versionEndIncluding": "11.5.3",
            "versionStartIncluding": "11.3.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A0D2EAFC-436A-4553-B688-268EF5610499",
            "versionEndIncluding": "11.5.3",
            "versionStartIncluding": "11.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "91D62DE9-6693-474F-A2F4-9F53A06F5663",
            "versionEndIncluding": "11.5.3",
            "versionStartIncluding": "11.4.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AA78FF31-4D4A-402D-9C3C-61DC9B14A790",
            "versionEndIncluding": "11.5.3",
            "versionStartIncluding": "11.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9FF30167-0241-4136-82F8-2D2FB545C19A",
            "versionEndIncluding": "11.3.0",
            "versionStartIncluding": "11.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_enterprise_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "980317BB-165F-4804-926E-9973BC16E28A",
            "versionEndIncluding": "2.3.0",
            "versionStartIncluding": "2.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_enterprise_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "23AEA33F-71CC-473F-86A4-C120532928DE",
            "versionEndIncluding": "3.1.1",
            "versionStartIncluding": "3.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EEE25317-09BF-46D2-934B-2D05B1390EFA",
            "versionEndIncluding": "11.5.3",
            "versionStartIncluding": "11.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D2CBEB8A-617C-470F-BF49-10BE16FBFA97",
            "versionEndIncluding": "11.5.3",
            "versionStartIncluding": "11.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4C8165D3-9160-4947-B1DF-226698B39E90",
            "versionEndIncluding": "11.5.3",
            "versionStartIncluding": "11.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A63021EE-71D7-4CB3-AEDD-90A890FD5959",
            "versionEndIncluding": "11.5.3",
            "versionStartIncluding": "11.3.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_protocol_security_module:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C666A18-9DED-4B49-92DE-474403FC17BF",
            "versionEndIncluding": "11.4.1",
            "versionStartIncluding": "11.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_wan_optimization_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A6B52D60-38DB-4BE9-91F4-B6553F5E5A93",
            "versionEndIncluding": "11.3.0",
            "versionStartIncluding": "11.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E1E3204F-9464-4AC3-819B-D1A6B399FAE3",
            "versionEndIncluding": "11.3.0",
            "versionStartIncluding": "11.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-iq_adc:4.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C9768142-C554-44DE-B8D5-45CB51E3C34C"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-iq_centralized_management:4.6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "24AEF0B2-7C8C-432C-A840-C2441A70343F"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-iq_cloud:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C8BF865-BA45-4711-829F-EC8E5EA22D2F",
            "versionEndIncluding": "4.5.0",
            "versionStartIncluding": "4.0.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-iq_device:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3BC0EAFD-DA5E-4A1B-81CB-0D5A964F9EB6",
            "versionEndIncluding": "4.5.0",
            "versionStartIncluding": "4.2.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-iq_security:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6B3E56EB-202A-4F58-8E94-B2DDA1693498",
            "versionEndIncluding": "4.5.0",
            "versionStartIncluding": "4.0.0"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References
