Multiple ethernet Network Interface Card (NIC) device drivers do not pad frames with null bytes, which allows remote attackers to obtain information from previous packets or kernel memory by using malformed packets, as demonstrated by Etherleak.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2003-01-17 05:00
Updated : 2024-02-28 10:24
NVD link : CVE-2003-0001
Mitre link : CVE-2003-0001
CVE.ORG link : CVE-2003-0001
JSON object : View
Products Affected
netbsd
- netbsd
linux
- linux_kernel
freebsd
- freebsd
microsoft
- windows_2000
- windows_2000_terminal_services
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor