#VU94785 Memory corruption in Linux kernel - CVE-2007-2878

Cybersecurity Help s.r.o.

Published: 2007-05-29 | Updated: 2024-07-26

Vulnerability identifier: #VU94785

Vulnerability risk: Low

CVSSv4.0: 5.4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2007-2878

CWE-ID: CWE-119

Exploitation vector: Local

Exploit availability: Yes

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The VFAT compat ioctls in the Linux kernel before 2.6.21.2, when run on a 64-bit system, allow local users to corrupt a kernel_dirent struct and cause a denial of service (system crash) via unknown vectors.

Mitigation
Install update from vendor's repository.

Vulnerable software versions

Linux kernel: All versions

External links
https://osvdb.org/35926
https://secunia.com/advisories/25505
https://secunia.com/advisories/26133
https://secunia.com/advisories/26139
https://secunia.com/advisories/26760
https://secunia.com/advisories/27436
https://secunia.com/advisories/27747
https://secunia.com/advisories/28626
https://support.avaya.com/elmodocs2/security/ASA-2007-474.htm
https://www.debian.org/security/2008/dsa-1479
https://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.21.2
https://www.redhat.com/support/errata/RHSA-2007-0705.html
https://www.redhat.com/support/errata/RHSA-2007-0939.html
https://www.securityfocus.com/bid/24134
https://www.ubuntu.com/usn/usn-486-1
https://www.ubuntu.com/usn/usn-489-1
https://www.ubuntu.com/usn/usn-510-1
https://www.vupen.com/english/advisories/2007/2023
https://exchange.xforce.ibmcloud.com/vulnerabilities/34669
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11674

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

Latest bulletins with this vulnerability

Memory corruption in Linux kernel