Vulnerability Note VU#681569
Linux Kernel may fail to properly handle SNMP packets
A memory freeing vulnerability in the Linux kernel module ip_nat_snmp_basic can be exploited to create a denial-of-service condition.
The ip_nat_snmp_basic IP NAT module is intended for use with SNMP network discovery and monitoring applications where target networks use conflicting private IP addresses .
A remote attacker could cause a system running Linux kernel version < 220.127.116.11 with the ip_nat_snmp_basic module loaded to crash. This results in a denial-of-service condition.
Apply an update
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Mandriva, Inc.||Affected||-||09 Jun 2006|
|Trustix Secure Linux||Affected||-||09 Jun 2006|
CVSS Metrics (Learn More)
This vulnerability was reported by Patrick McHardy.
This document was written by Ryan Giobbi.
- CVE IDs: CVE-2006-2444
- Date Public: 23 May 2006
- Date First Published: 09 Jun 2006
- Date Last Updated: 13 Jul 2006
- Severity Metric: 2.69
- Document Revision: 21
If you have feedback, comments, or additional information about this vulnerability, please send us email.