CVE-2006-5753

HIGH

Description

Unspecified vulnerability in the listxattr system call in Linux kernel, when a "bad inode" is present, allows local users to cause a denial of service (data corruption) and possibly gain privileges via unknown vectors.

References

http://fedoranews.org/cms/node/2739

http://fedoranews.org/cms/node/2740

http://lkml.org/lkml/2007/1/3/150

http://osvdb.org/33020

http://secunia.com/advisories/23955

http://secunia.com/advisories/23997

http://secunia.com/advisories/24098

http://secunia.com/advisories/24100

http://secunia.com/advisories/24206

http://secunia.com/advisories/24400

http://secunia.com/advisories/24429

http://secunia.com/advisories/24482

http://secunia.com/advisories/24547

http://secunia.com/advisories/25226

http://secunia.com/advisories/25683

http://secunia.com/advisories/25691

http://secunia.com/advisories/25714

http://secunia.com/advisories/29058

http://support.avaya.com/elmodocs2/security/ASA-2007-063.htm

http://www.debian.org/security/2007/dsa-1304

http://www.debian.org/security/2008/dsa-1503

http://www.mandriva.com/security/advisories?name=MDKSA-2007:040

http://www.mandriva.com/security/advisories?name=MDKSA-2007:060

http://www.novell.com/linux/security/advisories/2007_18_kernel.html

http://www.novell.com/linux/security/advisories/2007_21_kernel.html

http://www.novell.com/linux/security/advisories/2007_30_kernel.html

http://www.novell.com/linux/security/advisories/2007_35_kernel.html

http://www.redhat.com/support/errata/RHSA-2007-0014.html

http://www.securityfocus.com/archive/1/471457

http://www.securityfocus.com/bid/22316

http://www.ubuntu.com/usn/usn-416-1

https://issues.rpath.com/browse/RPL-1106

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9371

Details

Source: MITRE

Published: 2007-01-30

Updated: 2017-10-11

Risk Information

CVSS v2.0

Base Score: 7.2

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 3.9

Severity: HIGH