Vlad Yasevich

2 exploits Active since Jul 2013

CVE-2013-2206 WRITEUP WRITEUP

Linux Kernel < 3.8.5 - Denial of Service via SCTP Duplicate COOKIE ECHO Chunk

The sctp_sf_do_5_2_4_dupcook function in net/sctp/sm_statefuns.c in the SCTP implementation in the Linux kernel before 3.8.5 does not properly handle associations during the processing of a duplicate COOKIE ECHO chunk, which allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via crafted SCTP traffic.

View Code

CVE-2015-5283 WRITEUP WRITEUP

Linux Kernel < 4.2.2 - Denial of Service via SCTP Socket Initialization

The sctp_init function in net/sctp/protocol.c in the Linux kernel before 4.2.3 has an incorrect sequence of protocol-initialization steps, which allows local users to cause a denial of service (panic or memory corruption) by creating SCTP sockets before all of the steps have finished.

View Code