CVE-2004-0816

7.5HIGH

Key Information:

Vendor: Linux
Status: Linux Kernel; Suse Linux
Vendor: CVE Published:; 23 December 2004

Summary

Integer underflow in the firewall logging rules for iptables in Linux before 2.6.8 allows remote attackers to cause a denial of service (application crash) via a malformed IP packet.

References

http://secunia.com/advisories/11202/

third-party-advisoryx_refsource_SECUNIA

http://www.mandriva.com/security/advisories?name=MDKSA-20...

vendor-advisoryx_refsource_MANDRAKE

http://www.novell.com/linux/security/advisories/2004_37_k...

vendor-advisoryx_refsource_SUSE

EPSS Score

3% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Dec 23, 2004
Vulnerability Reserved
Aug 25, 2004

Collectors

NVD DatabaseMitre Database