Home > Vulnerability Database > CVE-2008-1675

Mend.io Vulnerability Database

CVE-2008-1675

Date: May 2, 2008

The bdx_ioctl_priv function in the tehuti driver (tehuti.c) in Linux kernel 2.6.x before 2.6.25.1 does not properly check certain information related to register size, which has unspecified impact and local attack vectors, probably related to reading or writing kernel memory.

Severity Score

8.4

Related Resources (24)

Url: http://secunia.com/advisories/30044

Url: http://www.securitytracker.com/id?1019960

Url: https://nvd.nist.gov/vuln/detail/CVE-2008-1675

Url: http://secunia.com/advisories/30260

Url: http://www.mandriva.com/security/advisories?name=MDVSA-2008:109

Url: https://exchange.xforce.ibmcloud.com/vulnerabilities/42132

Url: http://www.vupen.com/english/advisories/2008/1406/references

Url: http://www.securityfocus.com/archive/1/491566/100/0/threaded

Url: http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0157

Url: http://secunia.com/advisories/30017

Url: https://issues.rpath.com/browse/RPL-2501

Url: https://usn.ubuntu.com/614-1/

Url: http://www.mandriva.com/security/advisories?name=MDVSA-2008:167

Url: http://www.securityfocus.com/archive/1/491732/100/0/threaded

Url: http://wiki.rpath.com/Advisories:rPSA-2008-0157

Url: http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25.1

Url: http://marc.info/?l=linux-kernel&m=120949204619718&w=2

Url: https://www.redhat.com/archives/fedora-package-announce/2008-May/msg00232.html

Url: http://www.securityfocus.com/bid/29014

Url: http://secunia.com/advisories/30515

Url: http://marc.info/?l=linux-kernel&m=120949204519706&w=2

Url: http://marc.info/?l=linux-kernel&m=120949582428998&w=2

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2008-1675

Url: https://www.mend.io/vulnerability-database/CVE-2008-1675

Severity Score

8.4

Weakness Type (CWE)

Resource Management Errors

CWE-399

Insufficient Information

NVD-CWE-noinfo

CVSS v3.1

Base Score:	8.4
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

CVSS v2

Base Score:	7.2
Access Vector (AV):	LOCAL
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	COMPLETE
Integrity (I):	COMPLETE
Availability (A):	COMPLETE
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2008-1675

Date: May 2, 2008

Severity Score

Related Resources (24)

Severity Score

Weakness Type (CWE)

CVSS v3.1

CVSS v2

Do you need more information?