CVE-2005-0384

Unknown vulnerability in the PPP driver for the Linux kernel 2.6.8.1 allows remote attackers to cause a denial of service (kernel crash) via a pppd client.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://secunia.com/advisories/20163
http://secunia.com/advisories/20202
http://secunia.com/advisories/20338
http://www.debian.org/security/2006/dsa-1067
http://www.debian.org/security/2006/dsa-1069
http://www.debian.org/security/2006/dsa-1070
http://www.debian.org/security/2006/dsa-1082
http://www.novell.com/linux/security/advisories/2005_18_kernel.html	Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2005-283.html	Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2005-284.html	Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2005-293.html
http://www.redhat.com/support/errata/RHSA-2005-366.html
http://www.securityfocus.com/bid/12810
http://www.trustix.org/errata/2005/0009/	Vendor Advisory
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=152532
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9562
https://usn.ubuntu.com/95-1/

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:redhat:enterprise_linux:2.1::advanced_server:::::
	cpe:2.3:o:redhat:enterprise_linux:2.1::enterprise_server:::::
	cpe:2.3:o:redhat:enterprise_linux:2.1::workstation:::::
	cpe:2.3:o:suse:suse_linux:8.2:::::::*
	cpe:2.3:o:suse:suse_linux:9.0:::::::*
	cpe:2.3:o:suse:suse_linux:9.1:::::::*
	cpe:2.3:o:suse:suse_linux:9.2:::::::*
	cpe:2.3:o:trustix:secure_linux:2:::::::*
	cpe:2.3:o:trustix:secure_linux:2.1:::::::*
	cpe:2.3:o:trustix:secure_linux:2.2:::::::*
	cpe:2.3:o:ubuntu:ubuntu_linux:4.10:::::::*

History

No history.

Information

Published : 2005-03-15 05:00

Updated : 2018-10-03 21:29

NVD link : CVE-2005-0384

Mitre link : CVE-2005-0384

CVE.ORG link : CVE-2005-0384

JSON object : View

Products Affected

trustix

secure_linux

ubuntu

ubuntu_linux

suse

suse_linux

redhat

enterprise_linux

CWE

NVD-CWE-Other

{"id": "CVE-2005-0384", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2005-03-15T05:00:00.000", "references": [{"url": "http://secunia.com/advisories/20163", "source": "security@debian.org"}, {"url": "http://secunia.com/advisories/20202", "source": "security@debian.org"}, {"url": "http://secunia.com/advisories/20338", "source": "security@debian.org"}, {"url": "http://www.debian.org/security/2006/dsa-1067", "source": "security@debian.org"}, {"url": "http://www.debian.org/security/2006/dsa-1069", "source": "security@debian.org"}, {"url": "http://www.debian.org/security/2006/dsa-1070", "source": "security@debian.org"}, {"url": "http://www.debian.org/security/2006/dsa-1082", "source": "security@debian.org"}, {"url": "http://www.novell.com/linux/security/advisories/2005_18_kernel.html", "tags": ["Vendor Advisory"], "source": "security@debian.org"}, {"url": "http://www.redhat.com/support/errata/RHSA-2005-283.html", "tags": ["Vendor Advisory"], "source": "security@debian.org"}, {"url": "http://www.redhat.com/support/errata/RHSA-2005-284.html", "tags": ["Vendor Advisory"], "source": "security@debian.org"}, {"url": "http://www.redhat.com/support/errata/RHSA-2005-293.html", "source": "security@debian.org"}, {"url": "http://www.redhat.com/support/errata/RHSA-2005-366.html", "source": "security@debian.org"}, {"url": "http://www.securityfocus.com/bid/12810", "source": "security@debian.org"}, {"url": "http://www.trustix.org/errata/2005/0009/", "tags": ["Vendor Advisory"], "source": "security@debian.org"}, {"url": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=152532", "source": "security@debian.org"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9562", "source": "security@debian.org"}, {"url": "https://usn.ubuntu.com/95-1/", "source": "security@debian.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Unknown vulnerability in the PPP driver for the Linux kernel 2.6.8.1 allows remote attackers to cause a denial of service (kernel crash) via a pppd client."}], "lastModified": "2018-10-03T21:29:34.263", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:advanced_server:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2641EE56-6F9D-400B-B456-877F4DA79B10"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:enterprise_server:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E0B458EA-495E-40FA-9379-C03757F7B1EE"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:workstation:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1728AB5D-55A9-46B0-A412-6F7263CAEB5A"}, {"criteria": "cpe:2.3:o:suse:suse_linux:8.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1EFB33BF-F6A5-48C1-AEB5-194FCBCFC958"}, {"criteria": "cpe:2.3:o:suse:suse_linux:9.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FB0E2D3B-B50A-46C2-BA1E-3E014DE91954"}, {"criteria": "cpe:2.3:o:suse:suse_linux:9.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CFABFCE5-4F86-4AE8-9849-BC360AC72098"}, {"criteria": "cpe:2.3:o:suse:suse_linux:9.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CFF36BC6-6CCD-4FEE-A120-5B8C4BF5620C"}, {"criteria": "cpe:2.3:o:trustix:secure_linux:2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "39B3D5AE-05A8-433C-98DD-2711423D3FA6"}, {"criteria": "cpe:2.3:o:trustix:secure_linux:2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A67735E5-E43E-4164-BDB2-ADC6E0288E9F"}, {"criteria": "cpe:2.3:o:trustix:secure_linux:2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5AB70F82-52BB-4D0D-9A24-9AF67278466D"}, {"criteria": "cpe:2.3:o:ubuntu:ubuntu_linux:4.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C62EF915-CA7C-4D75-BC67-E015772BB9CF"}], "operator": "OR"}]}], "sourceIdentifier": "security@debian.org"}