CVE-2006-1342

Linux kernel <2.4 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-1342. PoCs published by Pavel Kankovsky.

AI-analyzed exploit summary This exploit demonstrates a local memory-disclosure vulnerability in the Linux kernel by leveraging socket operations to dump kernel memory contents. It binds to a specified port, accepts a connection, and uses getsockname and getsockopt to leak memory data.

Description

net/ipv4/af_inet.c in Linux kernel 2.4 does not clear sockaddr_in.sin_zero before returning IPv4 socket names from the (1) getsockname, (2) getpeername, and (3) accept functions, which allows local users to obtain portions of potentially sensitive memory.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Pavel Kankovsky · clocallinux

https://www.exploit-db.com/exploits/27461

View Code ZIP pw:eip

This exploit demonstrates a local memory-disclosure vulnerability in the Linux kernel by leveraging socket operations to dump kernel memory contents. It binds to a specified port, accepts a connection, and uses getsockname and getsockopt to leak memory data.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: Linux kernel (versions affected by CVE-2006-1342)

No auth needed

Prerequisites: Local access to the target system · Ability to bind to a network port

MITRE ATT&CK

T1003 - OS Credential Dumping

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (18)

Core 18

Core References

Vendor Advisory vendor-advisory x_refsource_redhat

http://www.redhat.com/support/errata/RHSA-2006-0579.html

Vendor Advisory x_refsource_confirm

http://www.kernel.org/git/?p=linux/kernel/git/marcelo/linux-2.4.git%3Ba=commit%3Bh=09d3b3dcfa80c9094f1748c1be064b9326c9ef2b

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2006/4502

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/22875

Vendor Advisory x_refsource_confirm

http://www.vmware.com/download/esx/esx-202-200610-patch.html

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/451426/100/200/threaded

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/21035

Vendor Advisory x_refsource_confirm

http://www.vmware.com/download/esx/esx-213-200610-patch.html

Vendor Advisory vendor-advisory x_refsource_suse

http://www.novell.com/linux/security/advisories/2006-05-31.html

Vendor Advisory vendor-advisory x_refsource_redhat

http://www.redhat.com/support/errata/RHSA-2006-0580.html

Vendor Advisory x_refsource_confirm

http://www.vmware.com/download/esx/esx-254-200610-patch.html

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/19357

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/451404/100/0/threaded

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/20398

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/451417/100/200/threaded

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/17203

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/451419/100/200/threaded

Mailing List mailing-list x_refsource_mlist

http://marc.info/?l=linux-netdev&m=114148078223594&w=2

Scores

EPSS 0.0071

EPSS Percentile 48.7%

Details

Status published

Products (1)

linux/linux_kernel 2.4.0

Published Mar 21, 2006

Tracked Since Feb 18, 2026