CVE-2006-2935
CVE-2006-2935
The dvd_read_bca function in the DVD handling code in drivers/cdrom/cdrom.c in Linux kernel 2.2.16, and later versions, assigns the wrong value to a length variable, which allows local users to execute arbitrary code via a crafted USB Storage device that triggers a buffer overflow.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://bugzilla.kernel.org/show_bug.cgi?id=2966https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=197670http://secunia.com/advisories/21179http://secunia.com/advisories/21298http://secunia.com/advisories/21498http://secunia.com/advisories/21605http://secunia.com/advisories/21614http://secunia.com/advisories/21695http://secunia.com/advisories/21934http://secunia.com/advisories/22082http://secunia.com/advisories/22093http://secunia.com/advisories/22174