Vulnerability Description
The snmp_trap_decode function in the SNMP NAT helper for Linux kernel before 2.6.16.18 allows remote attackers to cause a denial of service (crash) via unspecified remote attack vectors that cause failures in snmp_trap_decode that trigger (1) frees of random memory or (2) frees of previously-freed memory (double-free) by snmp_trap_decode as well as its calling function, as demonstrated via certain test cases of the PROTOS SNMP test suite.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | 2.6.0 |
References
- http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.18Patch
- http://secunia.com/advisories/20182
- http://secunia.com/advisories/20225PatchVendor Advisory
- http://secunia.com/advisories/20716
- http://secunia.com/advisories/21035
- http://secunia.com/advisories/21136
- http://secunia.com/advisories/21179
- http://secunia.com/advisories/21498
- http://secunia.com/advisories/21605
- http://secunia.com/advisories/21983
- http://secunia.com/advisories/22082
- http://secunia.com/advisories/22093
- http://secunia.com/advisories/22174
- http://secunia.com/advisories/22822
- http://securitytracker.com/id?1016153
FAQ
What is CVE-2006-2444?
CVE-2006-2444 is a vulnerability with a CVSS score of 7.8 (HIGH). The snmp_trap_decode function in the SNMP NAT helper for Linux kernel before 2.6.16.18 allows remote attackers to cause a denial of service (crash) via unspecified remote attack vectors that cause fai...
How severe is CVE-2006-2444?
CVE-2006-2444 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-2444?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.