CVSS: 7.5EPSS: 3%CPEs: 156EXPL: 0CVE-2006-1242
https://notcve.org/view.php?id=CVE-2006-1242
15 Mar 2006 — The ip_push_pending_frames function in Linux 2.4.x and 2.6.x before 2.6.16 increments the IP ID field when sending a RST after receiving unsolicited TCP SYN-ACK packets, which allows remote attackers to conduct an Idle Scan (nmap -sI) attack, which bypasses intended protections against such attacks. • http://secunia.com/advisories/19402 •
CVSS: 5.5EPSS: 0%CPEs: 103EXPL: 0CVE-2006-0482
https://notcve.org/view.php?id=CVE-2006-0482
31 Jan 2006 — Linux kernel 2.6.15.1 and earlier, when running on SPARC architectures, allows local users to cause a denial of service (hang) via a "date -s" command, which causes invalid sign extended arguments to be provided to the get_compat_timespec function call. El kernel de Linux 2.6.15.1 y versiones anteriores, cuando se ejecuta en arquitecturas SPARC, permite a usuarios locales provocar una denegación de servicio (cuelgue) a través del comando "date-s", lo que provoca argumentos de señal extendida no válidos para... • http://lists.debian.org/debian-sparc/2006/01/msg00129.html •
CVSS: 5.5EPSS: 0%CPEs: 80EXPL: 2CVE-2005-4352
https://notcve.org/view.php?id=CVE-2005-4352
31 Dec 2005 — The securelevels implementation in NetBSD 2.1 and earlier, and Linux 2.6.15 and earlier, allows local users to bypass time setting restrictions and set the clock backwards by setting the clock ahead to the maximum unixtime value (19 Jan 2038), which then wraps around to the minimum value (13 Dec 1901), which can then be set ahead to the desired time, aka "settimeofday() time wrap." • http://lists.grok.org.uk/pipermail/full-disclosure/2006-January/041178.html •
CVSS: 7.5EPSS: 1%CPEs: 175EXPL: 0CVE-2005-4635
https://notcve.org/view.php?id=CVE-2005-4635
31 Dec 2005 — The nl_fib_input function in fib_frontend.c in the Linux kernel before 2.6.15 does not check for valid lengths of the header and payload, which allows remote attackers to cause a denial of service (invalid memory reference) via malformed fib_lookup netlink messages. • http://secunia.com/advisories/18216 •
CVSS: 5.5EPSS: 0%CPEs: 59EXPL: 0CVE-2005-4811
https://notcve.org/view.php?id=CVE-2005-4811
31 Dec 2005 — The hugepage code (hugetlb.c) in Linux kernel 2.6, possibly 2.6.12 and 2.6.13, in certain configurations, allows local users to cause a denial of service (crash) by triggering an mmap error before a prefault, which causes an error in the unmap_hugepage_area function. • http://marc.info/?l=linux-kernel&m=112323336017157 •
CVSS: 5.5EPSS: 0%CPEs: 87EXPL: 1CVE-2005-3359
https://notcve.org/view.php?id=CVE-2005-3359
31 Dec 2005 — The atm module in Linux kernel 2.6 before 2.6.14 allows local users to cause a denial of service (panic) via certain socket calls that produce inconsistent reference counts for loadable protocol modules. • http://linux.bkbits.net:8080/linux-2.6/cset%404339c66aLroC1_zunYKhEIbtIWrnwg •
CVSS: 7.1EPSS: 0%CPEs: 72EXPL: 0CVE-2005-4618
https://notcve.org/view.php?id=CVE-2005-4618
31 Dec 2005 — Buffer overflow in sysctl in the Linux Kernel 2.6 before 2.6.15 allows local users to corrupt user memory and possibly cause a denial of service via a long string, which causes sysctl to write a zero byte outside the buffer. NOTE: since the sysctl is called from a userland program that provides the argument, this might not be a vulnerability, unless a legitimate user-assisted or setuid scenario can be identified. • http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.15 •
CVSS: 7.5EPSS: 0%CPEs: 215EXPL: 0CVE-2005-3660
https://notcve.org/view.php?id=CVE-2005-3660
22 Dec 2005 — Linux kernel 2.4 and 2.6 allows attackers to cause a denial of service (memory exhaustion and panic) by creating a large number of connected file descriptors or socketpairs and setting a large data transfer buffer, then preventing Linux from being able to finish the transfer by causing the process to become a zombie, or closing the file descriptor without closing an associated reference. • http://secunia.com/advisories/18205 •
CVSS: 5.5EPSS: 0%CPEs: 66EXPL: 0CVE-2005-3044
https://notcve.org/view.php?id=CVE-2005-3044
22 Sep 2005 — Multiple vulnerabilities in Linux kernel before 2.6.13.2 allow local users to cause a denial of service (kernel OOPS from null dereference) via (1) fput in a 32-bit ioctl on 64-bit x86 systems or (2) sockfd_put in the 32-bit routing_ioctl function on 64-bit systems. • http://kernel.org/git/?p=linux/kernel/git/aegl/linux-2.6.git%3Ba=commitdiff%3Bh=35311d6478077f7bfe35c1c653193e658bf32686 •
CVSS: 7.8EPSS: 0%CPEs: 42EXPL: 0CVE-2005-2490
https://notcve.org/view.php?id=CVE-2005-2490
14 Sep 2005 — Stack-based buffer overflow in the sendmsg function call in the Linux kernel 2.6 before 2.6.13.1 allows local users to execute arbitrary code by calling sendmsg and modifying the message contents in another thread. • http://marc.info/?l=bugtraq&m=112690609622266&w=2 •