CVE-2005-3808

Linux Kernel 2.6.11-2.6.14 - Denial of Service via 64-bit mmap Calls

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-3808. PoCs published by Oleg Drokin.

AI-analyzed exploit summary This exploit targets a local integer overflow vulnerability in the Linux kernel (CVE-2005-3808) by manipulating file offsets and memory mappings. It attempts to trigger a kernel crash or potential arbitrary code execution via a race condition between parent and child processes.

Description

Integer overflow in the invalidate_inode_pages2_range function in mm/truncate.c in Linux kernel 2.6.11 to 2.6.14 allows local users to cause a denial of service (hang) via 64-bit mmap calls that are not properly handled on a 32-bit system.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Oleg Drokin · cdoslinux
https://www.exploit-db.com/exploits/26811

This exploit targets a local integer overflow vulnerability in the Linux kernel (CVE-2005-3808) by manipulating file offsets and memory mappings. It attempts to trigger a kernel crash or potential arbitrary code execution via a race condition between parent and child processes.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Moderate
Reliability
Racy
Target: Linux kernel 2.6.x
No auth needed
Prerequisites: Local access to the target system · Ability to create and manipulate files
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (11)

Core 11
Core References
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/18788
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/19038
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/15846
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/18203
Vendor Advisory vendor-advisory x_refsource_suse
http://www.novell.com/linux/security/advisories/2006_06_kernel.html
Patch, Vendor Advisory mailing-list x_refsource_mlist
http://seclists.org/lists/linux-kernel/2005/Nov/7839.html
Various Sources vendor-advisory x_refsource_suse
http://lists.suse.de/archive/suse-security-announce/2006-Feb/0010.html
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDKSA-2006:018
Third Party Advisory, VDB Entry vendor-advisory x_refsource_fedora
http://www.securityfocus.com/advisories/9852
Vendor Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/231-1/

Scores

EPSS 0.0077
EPSS Percentile 50.8%

Details

Status published
Products (26)
linux/linux_kernel 2.6.11
linux/linux_kernel 2.6.11.1
linux/linux_kernel 2.6.11.2
linux/linux_kernel 2.6.11.3
linux/linux_kernel 2.6.11.4
linux/linux_kernel 2.6.11.5
linux/linux_kernel 2.6.11.6
linux/linux_kernel 2.6.11.7
linux/linux_kernel 2.6.11.8
linux/linux_kernel 2.6.11.9
... and 16 more
Published Nov 25, 2005
Tracked Since Feb 18, 2026