The _udp_lib_get_port function in net/ipv4/udp.c in Linux kernel 2.6.21 and earlier does not prevent a bind to a port with a local address when there is already a bind to that port with a wildcard local address, which might allow local users to intercept local traffic for daemons or other applications.
References
Configurations
History
21 Nov 2024, 00:30
Type | Values Removed | Values Added |
---|---|---|
References | () http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=de34ed91c4ffa4727964a832c46e624dd1495cf5 - | |
References | () http://osvdb.org/39235 - |
07 Nov 2023, 02:00
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2007-05-03 17:19
Updated : 2024-11-21 00:30
NVD link : CVE-2007-2480
Mitre link : CVE-2007-2480
CVE.ORG link : CVE-2007-2480
JSON object : View
Products Affected
linux
- linux_kernel
CWE