CVE

CVE-2004-1335

Date: (C)2004-12-15   (M)2024-02-22

Memory leak in the ip_options_get function in the Linux kernel before 2.6.10 allows local users to cause a denial of service (memory consumption) by repeatedly calling the ip_cmsg_send function.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 2.1
Exploit Score: 3.9
Impact Score: 2.9
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL

Reference:

BID-11956

http://marc.info/?l=bugtraq&m=110383108211524&w=2

http://www.securitytrap.com/mail/full-disclosure/2004/Dec/0323.html

SECUNIA-20163

SECUNIA-20202

SECUNIA-20338

DSA-1067

DSA-1069

DSA-1070

DSA-1082

RHSA-2005:016

RHSA-2005:017

http://www.guninski.com/where_do_you_want_billg_to_go_today_2.html

linux-ipoptionsget-memory-leak(18524)

oval:org.mitre.oval:def:11085