Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

CVE-2007-4997

Disclosure Date: November 06, 2007
CVE-2007-4997
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

Integer underflow in the ieee80211_rx function in net/ieee80211/ieee80211_rx.c in the Linux kernel 2.6.x before 2.6.23 allows remote attackers to cause a denial of service (crash) via a crafted SKB length value in a runt IEEE 802.11 frame when the IEEE80211_STYPE_QOS_DATA flag is set, aka an “off-by-two error.”

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics
Base Score:
None
Impact Score:
Unknown
Exploitability Score:
Unknown
Vector:
Unknown
Attack Vector (AV):
Unknown
Attack Complexity (AC):
Unknown
Privileges Required (PR):
Unknown
User Interaction (UI):
Unknown
Scope (S):
Unknown
Confidentiality (C):
Unknown
Integrity (I):
Unknown
Availability (A):
Unknown

General Information

Offensive Application
Unknown
Utility Class
Unknown
Ports
Unknown
OS
Unknown
Vulnerable Versions
n/a
Prerequisites
Unknown
Discovered By
Unknown
PoC Author
Unknown
Metasploit Module
Unknown
Reporter
Unknown

Vendors

  • linux

Products

  • linux kernel

References

Canonical
CVE-2007-4997 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4997)
BID-26337 (http://www.securityfocus.com/bid/26337)
Advisory
SECUNIA-28162 (http://secunia.com/advisories/28162)
http://www.redhat.com/support/errata/RHSA-2007-1104.html
SECUNIA-28806 (http://secunia.com/advisories/28806)
SECUNIA-28706 (http://secunia.com/advisories/28706)
XF-kernel-ieee80211-dos(38247) (https://exchange.xforce.ibmcloud.com/vulnerabilities/38247)
http://www.mandriva.com/security/advisories?name=MDKSA-2007:226
SECUNIA-27824 (http://secunia.com/advisories/27824)
http://www.mandriva.com/security/advisories?name=MDVSA-2008:008
http://www.novell.com/linux/security/advisories/2007_59_kernel.html
DSA-1428 (http://www.debian.org/security/2007/dsa-1428)
SECUNIA-27912 (http://secunia.com/advisories/27912)
SECUNIA-28033 (http://secunia.com/advisories/28033)
http://www.redhat.com/support/errata/RHSA-2007-0993.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10596
USN-558-1 (http://www.ubuntu.com/usn/usn-558-1)
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.23
http://www.mandriva.com/security/advisories?name=MDVSA-2008:105
http://lists.opensuse.org/opensuse-security-announce/2007-12/msg00001.html
http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00002.html
USN-574-1 (http://www.ubuntu.com/usn/usn-574-1)
SECUNIA-27555 (http://secunia.com/advisories/27555)
SECUNIA-28971 (http://secunia.com/advisories/28971)
SECUNIA-28170 (http://secunia.com/advisories/28170)
http://www.mandriva.com/security/advisories?name=MDKSA-2007:232
SECUNIA-27614 (http://secunia.com/advisories/27614)
ADV-2007-3718 (http://www.vupen.com/english/advisories/2007/3718)
USN-578-1 (http://www.ubuntu.com/usn/usn-578-1)
Miscellaneous
http://git.kernel.org?p=linux/kernel/git/avi/kvm.git;a=commitdiff;h=04045f98e0457aba7d4e6736f37eed189c48a5f7
http://git.kernel.org/?p=linux/kernel/git/avi/kvm.git%3Ba=commitdiff%3Bh=04045f98e0457aba7d4e6736f37eed189c48a5f7
https://access.redhat.com/errata/RHSA-2007:0993
https://access.redhat.com/errata/RHSA-2007:1104
https://access.redhat.com/security/cve/CVE-2007-4997
https://bugzilla.redhat.com/show_bug.cgi?id=346341

Additional Info

Authenticated
Unknown
Exploitable
Unknown
Reliability
Unknown
Stability
Unknown
Available Mitigations
Unknown
Shelf Life
Unknown
Userbase/Installbase
Unknown
Patch Effectiveness
Unknown
Technical Analysis