Linux » Linux Kernel » 2.6.17 : Security Vulnerabilities, CVEs, Published In 2006 (Code Execution)
Multiple buffer overflows in the cmtp_recv_interopmsg function in the Bluetooth driver (net/bluetooth/cmtp/capi.c) in the Linux kernel 2.4.22 up to 2.4.33.4 and 2.6.2 before 2.6.18.6, and 2.6.19.x, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via CAPI messages with a large value for the length of the (1) manu (manufacturer) or (2) serial (serial number) field.
Max CVSS
7.5
EPSS Score
14.13%
Published
2006-12-19
Updated
2018-10-17
Integer overflow in the get_fdb_entries function in net/bridge/br_ioctl.c in the Linux kernel before 2.6.18.4 allows local users to execute arbitrary code via a large maxnum value in an ioctl request.
Max CVSS
7.2
EPSS Score
0.06%
Published
2006-12-02
Updated
2018-10-30
The dvd_read_bca function in the DVD handling code in drivers/cdrom/cdrom.c in Linux kernel 2.2.16, and later versions, assigns the wrong value to a length variable, which allows local users to execute arbitrary code via a crafted USB Storage device that triggers a buffer overflow.
Max CVSS
4.6
EPSS Score
0.04%
Published
2006-07-05
Updated
2020-08-28
3 vulnerabilities found