CVE-2007-1000
CVE-2007-1000
The ipv6_getsockopt_sticky function in net/ipv6/ipv6_sockglue.c in the Linux kernel before 2.6.20.2 allows local users to read arbitrary kernel memory via certain getsockopt calls that trigger a NULL dereference.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/4172unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://bugzilla.kernel.org/show_bug.cgi?id=8134http://fedoranews.org/cms/node/2787http://fedoranews.org/cms/node/2788http://lists.suse.com/archive/suse-security-announce/2007-May/0001.htmlhttp://secunia.com/advisories/24493http://secunia.com/advisories/24518http://secunia.com/advisories/24777http://secunia.com/advisories/24901http://secunia.com/advisories/25080http://secunia.com/advisories/25099http://secunia.com/advisories/25691http://secunia.com/advisories/26133