Home > Vulnerability Database > CVE-2006-4997

Mend.io Vulnerability Database

CVE-2006-4997

Date: October 9, 2006

The clip_mkip function in net/atm/clip.c of the ATM subsystem in Linux kernel allows remote attackers to cause a denial of service (panic) via unknown vectors that cause the ATM subsystem to access the memory of socket buffers after they are freed (freed pointer dereference).

Severity Score

7.5

Related Resources (41)

Url: http://www.novell.com/linux/security/advisories/2006_79_kernel.html

Url: http://support.avaya.com/elmodocs2/security/ASA-2006-254.htm

Url: http://www.us.debian.org/security/2006/dsa-1237

Url: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10388

Url: http://secunia.com/advisories/22292

Url: http://www.us.debian.org/security/2006/dsa-1233

Url: http://securitytracker.com/id?1017526

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2006-4997

Url: http://www.redhat.com/support/errata/RHSA-2006-0710.html

Url: http://www.securityfocus.com/archive/1/471457

Url: http://www.mandriva.com/security/advisories?name=MDKSA-2006:197

Url: http://www.redhat.com/support/errata/RHSA-2007-0012.html

Url: http://www.mandriva.com/security/advisories?name=MDKSA-2007:012

Url: http://secunia.com/advisories/22945

Url: https://exchange.xforce.ibmcloud.com/vulnerabilities/29387

Url: http://secunia.com/advisories/23395

Url: http://secunia.com/advisories/23474

Url: http://www.redhat.com/support/errata/RHSA-2006-0689.html

Url: http://secunia.com/advisories/23752

Url: http://secunia.com/advisories/22762

Url: http://secunia.com/advisories/24288

Url: http://secunia.com/advisories/25691

Url: http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=206265

Url: http://secunia.com/advisories/23370

Url: http://www.securityfocus.com/bid/20363

Url: https://nvd.nist.gov/vuln/detail/CVE-2006-4997

Url: http://support.avaya.com/elmodocs2/security/ASA-2007-078.htm

Url: http://support.avaya.com/elmodocs2/security/ASA-2006-249.htm

Url: http://www.ubuntu.com/usn/usn-395-1

Url: http://secunia.com/advisories/22279

Url: http://secunia.com/advisories/23788

Url: http://www.mandriva.com/security/advisories?name=MDKSA-2007:025

Url: http://secunia.com/advisories/23064

Url: http://www.vupen.com/english/advisories/2006/3937

Url: http://www.redhat.com/support/errata/RHSA-2007-0013.html

Url: http://secunia.com/advisories/23384

Url: http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=fe26109a9dfd9327fdbe630fc819e1b7450986b2

Url: http://secunia.com/advisories/22253

Url: http://www.vupen.com/english/advisories/2006/3999

Url: http://secunia.com/advisories/22497

Url: https://www.mend.io/vulnerability-database/CVE-2006-4997

Severity Score

7.5

Weakness Type (CWE)

Use After Free

CWE-416

Insufficient Information

NVD-CWE-noinfo

CVSS v3.1

Base Score:	7.5
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	HIGH

CVSS v2

Base Score:	7.1
Access Vector (AV):	NETWORK
Access Complexity (AC):	MEDIUM
Authentication (AU):	NONE
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	COMPLETE
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2006-4997

Date: October 9, 2006

Severity Score

Related Resources (41)

Severity Score

Weakness Type (CWE)

CVSS v3.1

CVSS v2

Do you need more information?