Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

Linux Kernel Stream Control Transmission Protocol Violation Vulnerability

Severity

High

Family

Denial of Service

CVSSv2 Base

7.8

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Solution Type

Vendor Patch

Created

14 years ago

Modified

4 years ago

This host has Linux Kernel Stream Control Transmission Protocol (SCTP) implementation and is prone to Protocol Violation Vulnerability.

Insight

The issue is with the parameter 'sctp_paramhdr' in sctp_sf_violation_paramlen, sctp_sf_abort_violation, and sctp_make_abort_violation functions of sm.h, sm_make_chunk.c, and sm_statefunc.c files, which has invalid length and incorrect data types in function calls.

Affected Software

Linux kernel version before 2.6.27 on all Linux Platforms.

Solution

Upgrade to Linux kernel 2.6.27, or apply the available patch from the referenced link.

Common Vulnerabilities and Exposures (CVE)

CVE-2008-4618

Free and open-source vulnerability scanner

Available for macOS, Windows, and Linux

Linux Kernel Stream Control Transmission Protocol Violation Vulnerability

Severity

Family

CVSSv2 Base

CVSSv2 Vector

Solution Type

Created

Modified

Share

Insight

Affected Software

Solution

Common Vulnerabilities and Exposures (CVE)

References

Product

Customer Service

Company

Compliance

Free and open-source vulnerability scanner

Available for macOS, Windows, and Linux

Linux Kernel Stream Control Transmission Protocol Violation Vulnerability

Information

Severity

Severity

Family

Family

CVSSv2 Base

CVSSv2 Base

CVSSv2 Vector

CVSSv2 Vector

Solution Type

Solution Type

Created

Created

Modified

Modified

Share

Summary

Insight

Insight

Affected Software

Affected Software

Solution

Solution

Common Vulnerabilities and Exposures (CVE)

References