Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

CVE-2008-3792

Disclosure Date: September 03, 2008
CVE-2008-3792
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

net/sctp/socket.c in the Stream Control Transmission Protocol (sctp) implementation in the Linux kernel before 2.6.26.4 does not verify that the SCTP-AUTH extension is enabled before proceeding with SCTP-AUTH API functions, which allows attackers to cause a denial of service (NULL pointer dereference and panic) via vectors that result in calls to (1) sctp_setsockopt_auth_chunk, (2) sctp_setsockopt_hmac_ident, (3) sctp_setsockopt_auth_key, (4) sctp_setsockopt_active_key, (5) sctp_setsockopt_del_key, (6) sctp_getsockopt_maxburst, (7) sctp_getsockopt_active_key, (8) sctp_getsockopt_peer_auth_chunks, or (9) sctp_getsockopt_local_auth_chunks.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics
Base Score:
None
Impact Score:
Unknown
Exploitability Score:
Unknown
Vector:
Unknown
Attack Vector (AV):
Unknown
Attack Complexity (AC):
Unknown
Privileges Required (PR):
Unknown
User Interaction (UI):
Unknown
Scope (S):
Unknown
Confidentiality (C):
Unknown
Integrity (I):
Unknown
Availability (A):
Unknown

General Information

Offensive Application
Unknown
Utility Class
Unknown
Ports
Unknown
OS
Unknown
Vulnerable Versions
n/a
Prerequisites
Unknown
Discovered By
Unknown
PoC Author
Unknown
Metasploit Module
Unknown
Reporter
Unknown

Vendors

  • linux

Products

  • linux kernel 2.6.26.3

References

Canonical
CVE-2008-3792 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3792)
BID-31121 (http://www.securityfocus.com/bid/31121)
Advisory
SECUNIA-32190 (http://secunia.com/advisories/32190)
SECUNIA-32393 (http://secunia.com/advisories/32393)
DSA-1636 (http://www.debian.org/security/2008/dsa-1636)
[oss-security] 20080826 Re: CVE request: kernel: sctp: fix potential panics in the SCTP-AUTH API (http://www.openwall.com/lists/oss-security/2008/08/26/8)
[oss-security] 20080826 Re: CVE request: kernel: sctp: fix potential panics in the SCTP-AUTH API (http://www.openwall.com/lists/oss-security/2008/08/26/6)
SECUNIA-31881 (http://secunia.com/advisories/31881)
USN-659-1 (http://www.ubuntu.com/usn/usn-659-1)
XF-linux-kernel-sctpauthapi-dos(45189) (https://exchange.xforce.ibmcloud.com/vulnerabilities/45189)
http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00010.html
http://www.redhat.com/support/errata/RHSA-2008-0857.html
[oss-security] 20080825 CVE request: kernel: sctp: fix potential panics in the SCTP-AUTH API (http://www.openwall.com/lists/oss-security/2008/08/25/1)
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.26.4
[linux-kernel] 20080823 [GIT]: Networking (http://lkml.org/lkml/2008/8/23/49)
http://git.kernel.org?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=5e739d1752aca4e8f3e794d431503bfca3162df4
SECTRACK-1020854 (http://www.securitytracker.com/id?1020854)
SREASON-4210 (http://securityreason.com/securityalert/4210)
20080911 [TKADV2008-007] Linux Kernel SCTP-AUTH API Information Disclosure Vulnerability and NULL Pointer Dereferences (http://www.securityfocus.com/archive/1/496256/100/0/threaded)
[linux-netdev] 20080821 [PATCH] sctp: fix potential panics in the SCTP-AUTH API. (http://marc.info?l=linux-netdev&m=121928747903176&w=2)
[oss-security] 20080926 Re: CVE-2008-4113 update: kernel: sctp: fix random memory dereference with SCTP_HMAC_IDENT option (http://www.openwall.com/lists/oss-security/2008/09/26/6)
Miscellaneous
http://www.trapkit.de/advisories/TKADV2008-007.txt

Additional Info

Authenticated
Unknown
Exploitable
Unknown
Reliability
Unknown
Stability
Unknown
Available Mitigations
Unknown
Shelf Life
Unknown
Userbase/Installbase
Unknown
Patch Effectiveness
Unknown
Technical Analysis