Vulnerabilities > CVE-2003-0856 - Unspecified vulnerability in Stephen Hemminger Iproute
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
COMPLETE Summary
iproute 2.4.7 and earlier allows local users to cause a denial of service via spoofed messages as other users to the kernel netlink interface.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Nessus
NASL family Debian Local Security Checks NASL id DEBIAN_DSA-492.NASL description Herbert Xu reported that local users could cause a denial of service against iproute, a set of tools for controlling networking in Linux kernels. iproute uses the netlink interface to communicate with the kernel, but failed to verify that the messages it received came from the kernel (rather than from other user processes). last seen 2020-06-01 modified 2020-06-02 plugin id 15329 published 2004-09-29 reporter This script is Copyright (C) 2004-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/15329 title Debian DSA-492-1 : iproute - denial of service NASL family Red Hat Local Security Checks NASL id REDHAT-RHSA-2003-317.NASL description Updated iproute packages that close a locally-exploitable denial of service vulnerability are now available. The iproute package contains advanced IP routing and network device configuration tools. Herbert Xu reported that iproute can accept spoofed messages sent on the kernel netlink interface by other users on the local machine. This could lead to a local denial of service attack. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2003-0856 to this issue. Users of iproute should upgrade to these erratum packages, which contain a patch that checks that netlink messages actually came from the kernel. last seen 2020-06-01 modified 2020-06-02 plugin id 12432 published 2004-07-06 reporter This script is Copyright (C) 2004-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/12432 title RHEL 2.1 / 3 : iproute (RHSA-2003:317) NASL family Fedora Local Security Checks NASL id FEDORA_2004-115.NASL description This update of the iproute package fixes a security problem found in netlink. See CVE-2003-0856. All users of the netlink application are very strongly advised to update to these latest packages. - Thu May 06 2004 Phil Knirsch <pknirsch at redhat.com> 2.4.7-13.2 - Built security errata version for FC1. - Wed Apr 21 2004 Phil Knirsch <pknirsch at redhat.com> 2.4.7-14 - Fixed -f option for ss (#118355). - Small description fix (#110997). - Added initialization of some vars (#74961). - Added patch to initialize last seen 2020-06-01 modified 2020-06-02 plugin id 13694 published 2004-07-23 reporter This script is Copyright (C) 2004-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/13694 title Fedora Core 1 : iproute-2.4.7-13.2 (2004-115) NASL family Mandriva Local Security Checks NASL id MANDRAKE_MDKSA-2004-148.NASL description Herbert Xu discovered that iproute can accept spoofed messages sent via the kernel netlink interface by other users on the local machine. This could lead to a local Denial of Service attack. The updated packages have been patched to prevent this problem. last seen 2020-06-01 modified 2020-06-02 plugin id 15956 published 2004-12-14 reporter This script is Copyright (C) 2004-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/15956 title Mandrake Linux Security Advisory : iproute2 (MDKSA-2004:148) NASL family Gentoo Local Security Checks NASL id GENTOO_GLSA-200404-10.NASL description The remote host is affected by the vulnerability described in GLSA-200404-10 (iproute local Denial of Service vulnerability) It has been reported that iproute can accept spoofed messages on the kernel netlink interface from local users. This could lead to a local Denial of Service condition. Impact : Local users could cause a Denial of Service. Workaround : A workaround is not currently known for this issue. All users are advised to upgrade to the latest version of the affected package. last seen 2020-06-01 modified 2020-06-02 plugin id 14475 published 2004-08-30 reporter This script is Copyright (C) 2004-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/14475 title GLSA-200404-10 : iproute local Denial of Service vulnerability
Oval
accepted | 2013-04-29T04:09:55.660-04:00 | ||||||||
class | vulnerability | ||||||||
contributors |
| ||||||||
definition_extensions |
| ||||||||
description | iproute 2.4.7 and earlier allows local users to cause a denial of service via spoofed messages as other users to the kernel netlink interface. | ||||||||
family | unix | ||||||||
id | oval:org.mitre.oval:def:10912 | ||||||||
status | accepted | ||||||||
submitted | 2010-07-09T03:56:16-04:00 | ||||||||
title | iproute 2.4.7 and earlier allows local users to cause a denial of service via spoofed messages as other users to the kernel netlink interface. | ||||||||
version | 25 |
Redhat
advisories |
| ||||||||
rpms |
|
References
- http://www.debian.org/security/2004/dsa-492
- http://www.novell.com/linux/security/advisories/2005_01_sr.html
- http://www.redhat.com/archives/fedora-announce-list/2004-May/msg00004.html
- http://www.redhat.com/support/errata/RHSA-2003-316.html
- http://www.redhat.com/support/errata/RHSA-2003-317.html
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10912