CVSS: 7.5EPSS: 0%CPEs: 215EXPL: 0CVE-2005-3660
https://notcve.org/view.php?id=CVE-2005-3660
22 Dec 2005 — Linux kernel 2.4 and 2.6 allows attackers to cause a denial of service (memory exhaustion and panic) by creating a large number of connected file descriptors or socketpairs and setting a large data transfer buffer, then preventing Linux from being able to finish the transfer by causing the process to become a zombie, or closing the file descriptor without closing an associated reference. • http://secunia.com/advisories/18205 •
CVSS: 5.5EPSS: 0%CPEs: 98EXPL: 2CVE-2005-3358 – Linux Kernel 2.6.x - SET_MEMPOLICY Local Denial of Service
https://notcve.org/view.php?id=CVE-2005-3358
14 Dec 2005 — Linux kernel before 2.6.15 allows local users to cause a denial of service (panic) via a set_mempolicy call with a 0 bitmask, which causes a panic when a page fault occurs. Linux kernel anteriores a 2.6.15, permite a usuarios locales causar una denegación de servicio (pánico) mediante una llamada set_mempolicy con una máscara de bits 0, lo que causa un pánico cuando ocurre un fallo de página. • https://www.exploit-db.com/exploits/27031 •
CVSS: 5.5EPSS: 0%CPEs: 104EXPL: 1CVE-2005-3857 – Linux Kernel 2.6.x - Time_Out_Leases PrintK Local Denial of Service
https://notcve.org/view.php?id=CVE-2005-3857
27 Nov 2005 — The time_out_leases function in locks.c for Linux kernel before 2.6.15-rc3 allows local users to cause a denial of service (kernel log message consumption) by causing a large number of broken leases, which is recorded to the log using the printk function. • https://www.exploit-db.com/exploits/26648 • CWE-399: Resource Management Errors •
CVSS: 6.6EPSS: 0%CPEs: 106EXPL: 0CVE-2005-3806
https://notcve.org/view.php?id=CVE-2005-3806
25 Nov 2005 — The IPv6 flow label handling code (ip6_flowlabel.c) in Linux kernels 2.4 up to 2.4.32 and 2.6 before 2.6.14 modifies the wrong variable in certain circumstances, which allows local users to corrupt kernel memory or cause a denial of service (crash) by triggering a free of non-allocated memory. • http://kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=blobdiff%3Bh=bbbe80cdaf72a75a463aff9551e60b31e2f69061%3Bhp=f841bde30c18493a94fd5d522b84724a8eb82a4a%3Bhb=4ea6a8046bb49d43c950898f0cb4e1994ef6c89d%3Bf=net/ipv6/ip6_flowlabel.c • CWE-399: Resource Management Errors •
CVSS: 9.1EPSS: 0%CPEs: 134EXPL: 1CVE-2005-2709 – Linux Kernel 2.6.x - Sysctl Unregistration Local Denial of Service
https://notcve.org/view.php?id=CVE-2005-2709
20 Nov 2005 — The sysctl functionality (sysctl.c) in Linux kernel before 2.6.14.1 allows local users to cause a denial of service (kernel oops) and possibly execute code by opening an interface file in /proc/sys/net/ipv4/conf/, waiting until the interface is unregistered, then obtaining and modifying function pointers in memory that was used for the ctl_table. • https://www.exploit-db.com/exploits/26489 • CWE-399: Resource Management Errors •
CVSS: 5.5EPSS: 0%CPEs: 78EXPL: 1CVE-2005-2708
https://notcve.org/view.php?id=CVE-2005-2708
25 Oct 2005 — The search_binary_handler function in exec.c in Linux 2.4 kernel on 64-bit x86 architectures does not check a return code for a particular function call when virtual memory is low, which allows local users to cause a denial of service (panic), as demonstrated by running a process using the bash ulimit -v command. • http://secunia.com/advisories/18523 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 4%CPEs: 117EXPL: 0CVE-2005-3275
https://notcve.org/view.php?id=CVE-2005-3275
20 Oct 2005 — The NAT code (1) ip_nat_proto_tcp.c and (2) ip_nat_proto_udp.c in Linux kernel 2.6 before 2.6.13 and 2.4 before 2.4.32-rc1 incorrectly declares a variable to be static, which allows remote attackers to cause a denial of service (memory corruption) by causing two packets for the same protocol to be NATed at the same time, which leads to memory corruption. • ftp://patches.sgi.com/support/free/security/advisories/20060402-01-U •
CVSS: 4.7EPSS: 1%CPEs: 3EXPL: 0CVE-2005-3274
https://notcve.org/view.php?id=CVE-2005-3274
20 Oct 2005 — Race condition in ip_vs_conn_flush in Linux 2.6 before 2.6.13 and 2.4 before 2.4.32-pre2, when running on SMP systems, allows local users to cause a denial of service (null dereference) by causing a connection timer to expire while the connection table is being flushed before the appropriate lock is acquired. • http://lkml.org/lkml/2005/6/23/249 • CWE-476: NULL Pointer Dereference •
CVSS: 9.1EPSS: 1%CPEs: 133EXPL: 0CVE-2005-3273
https://notcve.org/view.php?id=CVE-2005-3273
20 Oct 2005 — The rose_rt_ioctl function in rose_route.c for Radionet Open Source Environment (ROSE) in Linux 2.6 kernels before 2.6.12, and 2.4 before 2.4.29, does not properly verify the ndigis argument for a new route, which allows attackers to trigger array out-of-bounds errors with a large number of digipeats. • http://linux.bkbits.net:8080/linux-2.4/cset%4041e2cf515TpixcVQ8q8HvQvCv9E6zA • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0CVE-2005-3180
https://notcve.org/view.php?id=CVE-2005-3180
11 Oct 2005 — The Orinoco driver (orinoco.c) in Linux kernel 2.6.13 and earlier does not properly clear memory from a previously used packet whose length is increased, which allows remote attackers to obtain sensitive information. • http://marc.info/?l=bugtraq&m=112914754708402&w=2 •