Check Point Advisories

Preemptive Protection againt Linux Kernel SNMP NAT Netfilter Memory Corruption Vulnerability

Check Point Reference: CPAI-2008-104
Date Published: 27 Jul 2008
Severity: Medium
Last Updated: Tuesday 01 January, 2008
Source: Secunia Advisory: SA20225
Industry Reference:CVE-2006-2444
Protection Provided by:
Who is Vulnerable? Linux Kernel Project Kernel 2.6.16.17 and earlier
Vulnerability Description A denial of service vulnerability has been discovered in the Linux Kernel. Linux is a popular open-source operating system. The Linux kernel supports a packet filtering framework known as Netfilter. Netfilter is capable of processing various IP based protocols, including SNMP. A remote attacker may exploit the vulnerability via a malformed SNMP packet.
Update/Patch AvaliableUpdate to version 2.6.16.18:
Kernel
Vulnerability DetailsThe vulnerability is due to insufficient checks of the Netfilter when processing SNMP packets. A remote attacker can exploit this issue by sending a specially crafted SNMP packet to a target host. Successful exploitation of this vulnerability may allow the attacker to cause a double free error in the Linux Kernel, creating a denial of service condition.

Protection Overview

×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK