CVE-2005-2500
CVSS7.5
发布时间 :2005-08-08 00:00:00
修订时间 :2008-09-05 16:51:55
NMCOS    

[原文]Buffer overflow in the xdr_xcode_array2 function in xdr.c in Linux kernel 2.6.12, as used in SuSE Linux Enterprise Server 9, might allow remote attackers to cause a denial of service and possibly execute arbitrary code via crafted XDR data for the nfsacl protocol.


[CNNVD]Linux Kernel NFSACL协议XDR数据 拒绝服务漏洞(CNNVD-200508-079)

        Linux Kernel是Linux操作系统所使用的内核。
        Linux Kernel在处理nfsacl协议的XDR数据时存在拒绝服务漏洞。目前更多细节不详,但据推测攻击者可以创建包含有很大字符值的畸形XDR数据导致Kernel内存破坏。

- CVSS (基础分值)

CVSS分值: 7.5 [严重(HIGH)]
机密性影响: PARTIAL [很可能造成信息泄露]
完整性影响: PARTIAL [可能会导致系统文件被修改]
可用性影响: PARTIAL [可能会导致性能下降或中断资源访问]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: [--]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

产品及版本信息(CPE)暂不可用

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2500
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-2500
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200508-079
(官方数据源) CNNVD

- 其它链接及资源

http://www.novell.com/linux/security/advisories/2005_44_kernel.html
(VENDOR_ADVISORY)  SUSE  SUSE-SA:2005:044
http://lkml.org/lkml/2005/6/23/19
(UNKNOWN)  MISC  http://lkml.org/lkml/2005/6/23/19
http://lkml.org/lkml/2005/6/23/126
(UNKNOWN)  CONFIRM  http://lkml.org/lkml/2005/6/23/126
http://xforce.iss.net/xforce/xfdb/21805
(UNKNOWN)  XF  kernel-xdrxcodearray-dos(21805)
http://www.securityfocus.com/bid/14470
(UNKNOWN)  BID  14470
http://secunia.com/advisories/16406
(UNKNOWN)  SECUNIA  16406
http://linux.bkbits.net:8080/linux-2.6/cset@42b9c4fdYUuaq0joRUZi8W0Q-2hA1A
(UNKNOWN)  CONFIRM  http://linux.bkbits.net:8080/linux-2.6/cset@42b9c4fdYUuaq0joRUZi8W0Q-2hA1A

- 漏洞信息

Linux Kernel NFSACL协议XDR数据 拒绝服务漏洞
高危 缓冲区溢出
2005-08-08 00:00:00 2005-10-20 00:00:00
远程  
        Linux Kernel是Linux操作系统所使用的内核。
        Linux Kernel在处理nfsacl协议的XDR数据时存在拒绝服务漏洞。目前更多细节不详,但据推测攻击者可以创建包含有很大字符值的畸形XDR数据导致Kernel内存破坏。

- 公告与补丁

        目前厂商已经发布了升级补丁以修复这个安全问题,补丁下载链接:
        http://www.novell.com/linux/security/advisories/2005_44_kernel.html
        

- 漏洞信息

18701
Linux Kernel XDR xdr_xcode_array2() Function Overflow
Input Manipulation
Loss of Integrity
Vendor Verified

- 漏洞描述

Unknown or Incomplete

- 时间线

2005-08-12 Unknow
Unknow Unknow

- 解决方案

Unknown or Incomplete

- 相关参考

- 漏洞作者

Unknown or Incomplete

- 漏洞信息

Linux Kernel NFSACL Protocol XDR Data Remote Denial of Service Vulnerability
Boundary Condition Error 14470
Yes No
2005-08-04 12:00:00 2006-05-26 11:38:00
The researcher responsible for discovering this issue is currently unknown. SUSE disclosed this vulnerability.

- 受影响的程序版本

S.u.S.E. Linux Professional 9.3 x86_64
S.u.S.E. Linux Professional 9.3
S.u.S.E. Linux Professional 9.2 x86_64
S.u.S.E. Linux Professional 9.2
S.u.S.E. Linux Personal 9.3 x86_64
S.u.S.E. Linux Personal 9.3
Linux kernel 2.6.12 .1
Linux kernel 2.6.12 -rc4
Linux kernel 2.6.12 -rc1
Linux kernel 2.6.11 .8
Linux kernel 2.6.11 .7
Linux kernel 2.6.11 .6
Linux kernel 2.6.11 .5
Linux kernel 2.6.11 .11
Linux kernel 2.6.11 -rc4
Linux kernel 2.6.11 -rc3
Linux kernel 2.6.11 -rc2
Linux kernel 2.6.11
+ Red Hat Fedora Core4
Linux kernel 2.6.10 rc2
Linux kernel 2.6.10
+ Red Hat Fedora Core3
+ Red Hat Fedora Core2
+ Trustix Secure Linux 3.0
+ Ubuntu Ubuntu Linux 5.0 4 powerpc
+ Ubuntu Ubuntu Linux 5.0 4 i386
+ Ubuntu Ubuntu Linux 5.0 4 amd64
Linux kernel 2.6.9
Linux kernel 2.6.8 rc3
Linux kernel 2.6.8 rc2
Linux kernel 2.6.8 rc1
+ Ubuntu Ubuntu Linux 4.1 ppc
+ Ubuntu Ubuntu Linux 4.1 ia64
+ Ubuntu Ubuntu Linux 4.1 ia32
Linux kernel 2.6.8
+ S.u.S.E. Linux Personal 9.2 x86_64
+ S.u.S.E. Linux Personal 9.2
+ Ubuntu Ubuntu Linux 4.1 ppc
+ Ubuntu Ubuntu Linux 4.1 ia64
+ Ubuntu Ubuntu Linux 4.1 ia32
Linux kernel 2.6.7 rc1
Linux kernel 2.6.7
Linux kernel 2.6.6 rc1
Linux kernel 2.6.6
Linux kernel 2.6.5
+ S.u.S.E. Linux Enterprise Server 9
+ S.u.S.E. Linux Personal 9.1 x86_64
+ S.u.S.E. Linux Personal 9.1 x86_64
+ S.u.S.E. Linux Personal 9.1
+ S.u.S.E. Linux Personal 9.1
Linux kernel 2.6.4
Linux kernel 2.6.3
Linux kernel 2.6.2
Linux kernel 2.6.1 -rc2
Linux kernel 2.6.1 -rc1
Linux kernel 2.6.1
Linux kernel 2.6 .10
Linux kernel 2.6 -test9-CVS
Linux kernel 2.6 -test9
Linux kernel 2.6 -test8
Linux kernel 2.6 -test7
Linux kernel 2.6 -test6
Linux kernel 2.6 -test5
Linux kernel 2.6 -test4
Linux kernel 2.6 -test3
Linux kernel 2.6 -test2
Linux kernel 2.6 -test11
Linux kernel 2.6 -test10
Linux kernel 2.6 -test1
Linux kernel 2.6
Conectiva Linux 10.0
Linux kernel 2.6.13 -rc6
Linux kernel 2.6.13 -rc1

- 不受影响的程序版本

Linux kernel 2.6.13 -rc6
Linux kernel 2.6.13 -rc1

- 漏洞讨论

Linux Kernel is affected by a remote denial-of-service vulnerability when handling XDR data for the nfsacl protocol.

Specific details about this issue were not disclosed. Presumably, an attacker crafts malformed XDR data that contains large string values to corrupt kernel memory.

This may result in a denial-of-service condition.

- 漏洞利用

Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com

- 解决方案

Linux Kernel versions 2.6.13-rc1 and later are not affected by this vulnerability. Note that this version of the kernel is a release candidate and may not be stable.

Please see the referenced advisories for more information.


Linux kernel 2.6.5

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站