Linux Kernel "sysfs_readdir()" Denial of Service
Secunia Advisory: SA25771
Release Date: 2007-06-26
Critical:
Not criticalImpact: DoS
Where: Local system
Solution Status: Unpatched
OS: Linux Kernel 2.6.x
CVE reference: CVE-2007-3104 (Secunia mirror)
Description:
A vulnerability has been reported in the Linux Kernel, which can be exploited by malicious, local users to cause a Denial of Service (DoS).
The vulnerability is caused due to a NULL pointer dereference within the function "sysfs_readdir()" when handling pointers to inodes. This can be exploited to crash a vulnerable system.
Solution:
Restrict access to trusted users only.
Provided and/or discovered by:
Reported in a Red Hat advisory.
全站熱搜
留言列表
資訊安全 (4)
