Main Vulnerability Database Exploits ID:10800 - Exploit for Use after free in Linux kernel - CVE-2006-2444

ID:10800 - Exploit for Use after free in Linux kernel - CVE-2006-2444

Published: November 5, 2024

Vulnerability identifier: #VU99724

Vulnerability risk: Low

CVE-ID: CVE-2006-2444

CWE-ID: CWE-416

Exploitation vector: Remote access

Vulnerable software:
Linux kernel

Link to public exploit:

https://www.exploit-db.com/exploits/1880/

Vulnerability description

The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.

The snmp_trap_decode function in the SNMP NAT helper for Linux kernel before 2.6.16.18 allows remote attackers to cause a denial of service (crash) via unspecified remote attack vectors that cause failures in snmp_trap_decode that trigger (1) frees of random memory or (2) frees of previously-freed memory (double-free) by snmp_trap_decode as well as its calling function, as demonstrated via certain test cases of the PROTOS SNMP test suite.

Remediation

Install update from vendor's repository.

ID:10800 - Exploit for Use after free in Linux kernel - CVE-2006-2444

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human