CVE-2006-2444

Linux Kernel - Denial of Service

Title source: rule

Description

The snmp_trap_decode function in the SNMP NAT helper for Linux kernel before 2.6.16.18 allows remote attackers to cause a denial of service (crash) via unspecified remote attack vectors that cause failures in snmp_trap_decode that trigger (1) frees of random memory or (2) frees of previously-freed memory (double-free) by snmp_trap_decode as well as its calling function, as demonstrated via certain test cases of the PROTOS SNMP test suite.

Exploits (1)

exploitdb WORKING POC VERIFIED

by ECL Labs · cdoslinux

https://www.exploit-db.com/exploits/1880

View Code ZIP pw:eip

References (34)

[Vendor Advisory] http://support.avaya.com/elmodocs2/security/ASA-2006-180.htm

[Vendor Advisory] http://support.avaya.com/elmodocs2/security/ASA-2006-203.htm

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2006-0437.html

[Vendor Advisory] http://www.novell.com/linux/security/advisories/2006_42_kernel.html

[Third Party Advisory, VDB Entry] http://securitytracker.com/id?1016153

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2006-0617.html

[Third Party Advisory] http://secunia.com/advisories/20716

[Third Party Advisory] http://secunia.com/advisories/21605

[Vendor Advisory] http://www.novell.com/linux/security/advisories/2006_47_kernel.html

[Third Party Advisory, VDB Entry] http://www.osvdb.org/25750

[Third Party Advisory] http://secunia.com/advisories/21136

[Third Party Advisory] http://www.debian.org/security/2006/dsa-1183

[Third Party Advisory] http://secunia.com/advisories/20182

[Vendor Advisory] http://www.ubuntu.com/usn/usn-302-1

[Third Party Advisory] http://www.vupen.com/english/advisories/2006/1916

[Third Party Advisory] http://secunia.com/advisories/22082

[Third Party Advisory] http://secunia.com/advisories/21983

[Vendor Advisory] http://www.novell.com/linux/security/advisories/2006_64_kernel.html

[Third Party Advisory] http://secunia.com/advisories/21035

[Third Party Advisory] http://secunia.com/advisories/22174

... and 14 more

Scores

EPSS 0.6980

EPSS Percentile 98.7%

Details

Status published

Products (11)

linux/linux_kernel 2.6.0 (14 CPE variants)

linux/linux_kernel 2.6.1 (4 CPE variants)

linux/linux_kernel 2.6.2 (4 CPE variants)

linux/linux_kernel 2.6.3 (5 CPE variants)

linux/linux_kernel 2.6.4 (4 CPE variants)

linux/linux_kernel 2.6.5 (4 CPE variants)

linux/linux_kernel 2.6.6 (4 CPE variants)

linux/linux_kernel 2.6.7 (4 CPE variants)

linux/linux_kernel 2.6.8 (5 CPE variants)

linux/linux_kernel 2.6.8.1

... and 1 more

Published May 25, 2006

Tracked Since Feb 18, 2026