Vulnerability Details : CVE-2005-3858
Memory leak in the ip6_input_finish function in ip6_input.c in Linux kernel 2.6.12 and earlier might allow attackers to cause a denial of service via malformed IPv6 packets with unspecified parameter problems, which prevents the SKB from being freed.
Vulnerability category: Denial of service
Products affected by CVE-2005-3858
- cpe:2.3:o:linux:linux_kernel:2.6.2:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.0:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.5:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.3:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.4:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.1:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.7:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.6:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.8:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.9:2.6.20:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.10:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.11.7:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.11.8:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.11.5:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.11.6:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.11:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.8.1:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.11.1:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.11.2:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.11.3:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.11.4:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.11.11:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.12:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.11.12:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.11.9:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.11.10:*:*:*:*:*:*:*
Threat overview for CVE-2005-3858
Top countries where our scanners detected CVE-2005-3858
Top open port discovered on systems with this issue
49153
IPs affected by CVE-2005-3858 11,273
Threat actors abusing to this issue?
Yes
Find out if you* are
affected by CVE-2005-3858!
*Directly or indirectly through your vendors, service providers and 3rd parties.
Powered by
attack surface intelligence
from SecurityScorecard.
Exploit prediction scoring system (EPSS) score for CVE-2005-3858
1.68%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 80 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2005-3858
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
7.8
|
HIGH | AV:N/AC:L/Au:N/C:N/I:N/A:C |
10.0
|
6.9
|
NIST |
References for CVE-2005-3858
-
http://www.debian.org/security/2006/dsa-1018
[SECURITY] [DSA 1018-1] New Linux kernel 2.4.27 packages fix several vulnerabilities
-
http://www.debian.org/security/2006/dsa-1017
[SECURITY] [DSA 1017-1] New Linux kernel 2.6.8 packages fix several vulnerabilities
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9396
-
http://marc.info/?l=linux-kernel&m=112508479120081&w=2
-
http://marc.info/?l=linux-kernel&m=112533899509033&w=2
-
http://secunia.com/advisories/19374
About Secunia Research | Flexera
-
http://www.securityfocus.com/bid/16043
-
http://secunia.com/advisories/19038
About Secunia Research | Flexera
-
https://usn.ubuntu.com/231-1/
-
http://www.redhat.com/support/errata/RHSA-2006-0101.html
Support
-
http://secunia.com/advisories/18510
About Secunia Research | Flexera
-
http://secunia.com/advisories/19369
About Secunia Research | Flexera
-
http://secunia.com/advisories/18203
-
http://secunia.com/advisories/18562
About Secunia Research | Flexera
-
http://lists.suse.de/archive/suse-security-announce/2006-Feb/0010.html
-
http://www.redhat.com/support/errata/RHSA-2006-0140.html
Support
Jump to