Vulnerabilities > CVE-2005-3753 - Denial-Of-Service vulnerability in kernel

CVSS 7.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

low complexity

linux

NVD

Published: 2005-11-22

Updated: 2008-09-05

Summary

Linux kernel before after 2.6.12 and before 2.6.13.1 might allow attackers to cause a denial of service (Oops) via certain IPSec packets that cause alignment problems in standard multi-block cipher processors. NOTE: it is not clear whether this issue can be triggered by an attacker.

Vulnerable Configurations

Part	Description	Count
OS	Linux Linux Linux Kernel 2.6.12.1 Linux Linux Kernel 2.6.12.2 Linux Linux Kernel 2.6.12.3 Linux Linux Kernel 2.6.12.4 Linux Linux Kernel 2.6.13	5

References

http://bugzilla.kernel.org/show_bug.cgi?id=5194