漏洞信息(CVE-2006-4997)

一、漏洞 CVE-2006-4997 基础信息

漏洞标题

N/A

来源：AIGC 神龙大模型

漏洞描述信息

在Linux内核的ATM子系统中的clip_mkip函数允许远程攻击者通过未知的向量导致服务拒绝(panic)，导致ATM子系统在释放套接字缓冲区(socket buffer)后访问它们的内存(释放指针引用)。

来源：AIGC 神龙大模型

CVSS信息

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

来源：AIGC 神龙大模型

漏洞类别

N/A

来源：AIGC 神龙大模型

漏洞标题

N/A

来源：美国国家漏洞数据库 NVD

漏洞描述信息

The clip_mkip function in net/atm/clip.c of the ATM subsystem in Linux kernel allows remote attackers to cause a denial of service (panic) via unknown vectors that cause the ATM subsystem to access the memory of socket buffers after they are freed (freed pointer dereference).

来源：美国国家漏洞数据库 NVD

CVSS信息

N/A

来源：美国国家漏洞数据库 NVD

漏洞类别

N/A

来源：美国国家漏洞数据库 NVD

漏洞标题

Linux内核ATM子系统'clip.c' clip_mkip函数远程拒绝服务漏洞

来源：中国国家信息安全漏洞库 CNNVD

漏洞描述信息

Linux内核ATM子系统的net/atm/clip.c中的clip_mkip函数存在远程拒绝服务漏洞。远程攻击者通过未知矢量使ATM子系统在套接字缓冲区内存被释放后访问该内存(释放的指针取消引用)，以此使系统拒绝服务(呼救)。

来源：中国国家信息安全漏洞库 CNNVD

CVSS信息

N/A

来源：中国国家信息安全漏洞库 CNNVD

漏洞类别

授权问题

来源：中国国家信息安全漏洞库 CNNVD

二、漏洞 CVE-2006-4997 的公开POC

#	POC 描述	源链接	神龙链接

三、漏洞 CVE-2006-4997 的情报信息

http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=206265 x_refsource_CONFIRM
http://support.avaya.com/elmodocs2/security/ASA-2006-254.htm x_refsource_CONFIRM
http://support.avaya.com/elmodocs2/security/ASA-2007-078.htm x_refsource_CONFIRM
http://support.avaya.com/elmodocs2/security/ASA-2006-249.htm x_refsource_CONFIRM
http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=fe26109a9dfd9327fdbe630fc819e1b7450986b2 x_refsource_CONFIRM
http://www.securityfocus.com/bid/20363 vdb-entry x_refsource_BID
http://secunia.com/advisories/25691 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/23395 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/22945 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/22497 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/23370 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/23064 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/23474 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/24288 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/22762 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/22253 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/23384 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/22279 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/23752 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/23788 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/22292 third-party-advisory x_refsource_SECUNIA
http://securitytracker.com/id?1017526 vdb-entry x_refsource_SECTRACK
http://www.us.debian.org/security/2006/dsa-1237 vendor-advisory x_refsource_DEBIAN
http://www.us.debian.org/security/2006/dsa-1233 vendor-advisory x_refsource_DEBIAN
http://www.ubuntu.com/usn/usn-395-1 vendor-advisory x_refsource_UBUNTU
http://www.vupen.com/english/advisories/2006/3999 vdb-entry x_refsource_VUPEN
http://www.vupen.com/english/advisories/2006/3937 vdb-entry x_refsource_VUPEN
http://www.redhat.com/support/errata/RHSA-2007-0013.html vendor-advisory x_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2006-0689.html vendor-advisory x_refsource_REDHAT
http://www.mandriva.com/security/advisories?name=MDKSA-2007:012 vendor-advisory x_refsource_MANDRIVA
http://www.mandriva.com/security/advisories?name=MDKSA-2007:025 vendor-advisory x_refsource_MANDRIVA
http://www.redhat.com/support/errata/RHSA-2007-0012.html vendor-advisory x_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2006-0710.html vendor-advisory x_refsource_REDHAT
http://www.mandriva.com/security/advisories?name=MDKSA-2006:197 vendor-advisory x_refsource_MANDRIVA
http://www.novell.com/linux/security/advisories/2006_79_kernel.html vendor-advisory x_refsource_SUSE
https://exchange.xforce.ibmcloud.com/vulnerabilities/29387 vdb-entry x_refsource_XF
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10388 vdb-entry signature x_refsource_OVAL
http://www.securityfocus.com/archive/1/471457 mailing-list x_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2006-4997

一、 漏洞 CVE-2006-4997 基础信息

漏洞标题

漏洞描述信息

CVSS信息

漏洞类别

漏洞标题

漏洞描述信息

CVSS信息

漏洞类别

漏洞标题

漏洞描述信息

CVSS信息

漏洞类别

二、漏洞 CVE-2006-4997 的公开POC

三、漏洞 CVE-2006-4997 的情报信息

一、漏洞 CVE-2006-4997 基础信息