CVE-2006-7051

Linux Kernel - Denial of Service

Title source: rule

Description

The sys_timer_create function in posix-timers.c for Linux kernel 2.6.x allows local users to cause a denial of service (memory consumption) and possibly bypass memory limits or cause other processes to be killed by creating a large number of posix timers, which are allocated in kernel memory but are not treated as part of the process' memory.

Exploits (1)

exploitdb WORKING POC VERIFIED

by fingerout · assemblydoslinux

https://www.exploit-db.com/exploits/1657

View Code ZIP pw:eip

References (4)

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/25712

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/430278/30/5790/threaded

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/1657

[Third Party Advisory] http://securityreason.com/securityalert/2287

Scores

EPSS 0.0012

EPSS Percentile 31.4%

Classification

Status draft

Affected Products (15)

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

Timeline

Published Feb 24, 2007

Tracked Since Feb 18, 2026