Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

CVE-2009-4536

Disclosure Date: January 12, 2010
CVE-2009-4536
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

drivers/net/e1000/e1000_main.c in the e1000 driver in the Linux kernel 2.6.32.3 and earlier handles Ethernet frames that exceed the MTU by processing certain trailing payload data as if it were a complete frame, which allows remote attackers to bypass packet filters via a large packet with a crafted payload. NOTE: this vulnerability exists because of an incorrect fix for CVE-2009-1385.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics
Base Score:
None
Impact Score:
Unknown
Exploitability Score:
Unknown
Vector:
Unknown
Attack Vector (AV):
Unknown
Attack Complexity (AC):
Unknown
Privileges Required (PR):
Unknown
User Interaction (UI):
Unknown
Scope (S):
Unknown
Confidentiality (C):
Unknown
Integrity (I):
Unknown
Availability (A):
Unknown

General Information

Offensive Application
Unknown
Utility Class
Unknown
Ports
Unknown
OS
Unknown
Vulnerable Versions
n/a
Prerequisites
Unknown
Discovered By
Unknown
PoC Author
Unknown
Metasploit Module
Unknown
Reporter
Unknown

Vendors

  • debian,
  • linux

Products

  • debian linux 4.0,
  • debian linux 5.0,
  • linux kernel

References

Canonical
CVE-2009-4536 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4536)
BID-37519 (http://www.securityfocus.com/bid/37519)
Advisory
SECUNIA-35265 (http://secunia.com/advisories/35265)
SECUNIA-38276 (http://secunia.com/advisories/38276)
http://marc.info?t=126203102000001&r=1&w=2
SECTRACK-1023420 (http://securitytracker.com/id?1023420)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13226
http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00008.html
http://www.redhat.com/support/errata/RHSA-2010-0111.html
SECUNIA-38779 (http://secunia.com/advisories/38779)
https://bugzilla.redhat.com/show_bug.cgi?id=552126
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12440
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10607
SECUNIA-38296 (http://secunia.com/advisories/38296)
http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00005.html
http://www.redhat.com/support/errata/RHSA-2010-0053.html
http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00000.html
http://www.redhat.com/support/errata/RHSA-2010-0882.html
XF-kernel-e1000main-security-bypass(55648) (https://exchange.xforce.ibmcloud.com/vulnerabilities/55648)
DSA-1996 (http://www.debian.org/security/2010/dsa-1996)
http://www.redhat.com/support/errata/RHSA-2010-0019.html
[oss-security] 20091228 CVE requests - kernel security regressions for CVE-2009-1385/and -1389 (http://www.openwall.com/lists/oss-security/2009/12/28/1)
http://www.vmware.com/security/advisories/VMSA-2011-0009.html
FEDORA-2010-1787 (http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035159.html)
[oss-security] 20091229 Re: CVE requests - kernel security regressions for CVE-2009-1385/and -1389 (http://www.openwall.com/lists/oss-security/2009/12/29/2)
http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00007.html
https://rhn.redhat.com/errata/RHSA-2010-0095.html
http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00005.html
[oss-security] 20091231 Re: CVE requests - kernel security regressions for CVE-2009-1385/and -1389 (http://www.openwall.com/lists/oss-security/2009/12/31/1)
http://www.redhat.com/support/errata/RHSA-2010-0020.html
SECUNIA-38031 (http://secunia.com/advisories/38031)
SECUNIA-38610 (http://secunia.com/advisories/38610)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7453
DSA-2005 (http://www.debian.org/security/2010/dsa-2005)
http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00002.html
http://www.redhat.com/support/errata/RHSA-2010-0041.html
SECUNIA-38492 (http://secunia.com/advisories/38492)
Miscellaneous
http://blog.c22.cc/2009/12/27/26c3-cat-procsysnetipv4fuckups
http://events.ccc.de/congress/2009/Fahrplan/events/3596.en.html

Additional Info

Authenticated
Unknown
Exploitable
Unknown
Reliability
Unknown
Stability
Unknown
Available Mitigations
Unknown
Shelf Life
Unknown
Userbase/Installbase
Unknown
Patch Effectiveness
Unknown
Technical Analysis