|
|
Linux Kernel分片重组远程拒绝服务漏洞
发布时间:2003-06-13
更新时间:2003-06-13
严重程度:高
威胁程度:远程拒绝服务
错误类型:竞争条件
利用方式:服务器模式
BUGTRAQ ID:7797
CVE(CAN) ID:CAN-2003-0364
受影响系统Linux kernel 2.4 .0-test9
Linux kernel 2.4 .0-test8
Linux kernel 2.4 .0-test7
Linux kernel 2.4 .0-test6
Linux kernel 2.4 .0-test5
Linux kernel 2.4 .0-test4
Linux kernel 2.4 .0-test3
Linux kernel 2.4 .0-test2
Linux kernel 2.4 .0-test12
Linux kernel 2.4 .0-test11
Linux kernel 2.4 .0-test10
Linux kernel 2.4 .0-test1
Linux kernel 2.4
Linux kernel 2.4.1
Linux kernel 2.4.2
+Caldera OpenLinux Server 3.1
+Caldera OpenLinux Workstation 3.1
+RedHat Linux 7.1 alpha
+RedHat Linux 7.1 i386
Linux kernel 2.4.3
+MandrakeSoft Linux Mandrake 8.0
+MandrakeSoft Linux Mandrake 8.0 ppc
Linux kernel 2.4.4
+S.u.S.E. Linux 7.2
Linux kernel 2.4.5
+Slackware Linux 8.0
Linux kernel 2.4.6
Linux kernel 2.4.7
+RedHat Linux 7.2
+S.u.S.E. Linux 7.1
+S.u.S.E. Linux 7.2
Linux kernel 2.4.8
+MandrakeSoft Linux Mandrake 8.0
+MandrakeSoft Linux Mandrake 8.1
+MandrakeSoft Linux Mandrake 8.2
Linux kernel 2.4.9
+RedHat Enterprise Linux AS 2.1
+RedHat Enterprise Linux ES 2.1
+RedHat Enterprise Linux WS 2.1
+RedHat Linux 7.1 alpha
+RedHat Linux 7.1 i386
+RedHat Linux 7.1 ia64
+RedHat Linux 7.2 alpha
+RedHat Linux 7.2 i386
+RedHat Linux 7.2 ia64
+Sun Linux 5.0
+Sun Linux 5.0.3
Linux kernel 2.4.10
+S.u.S.E. Linux 7.3
Linux kernel 2.4.11
Linux kernel 2.4.12
+Conectiva Linux 7.0
Linux kernel 2.4.13
+Caldera OpenLinux Server 3.1.1
+Caldera OpenLinux Workstation 3.1.1
Linux kernel 2.4.14
Linux kernel 2.4.15
Linux kernel 2.4.16
+Sun Cobalt RaQ 550
Linux kernel 2.4.17
Linux kernel 2.4.18 pre-8
Linux kernel 2.4.18 pre-7
Linux kernel 2.4.18 pre-6
Linux kernel 2.4.18 pre-5
Linux kernel 2.4.18 pre-4
Linux kernel 2.4.18 pre-3
Linux kernel 2.4.18 pre-2
Linux kernel 2.4.18 pre-1
Linux kernel 2.4.18 x86
+Debian Linux 3.0 ia-32
Linux kernel 2.4.18
+Astaro Security Linux 2.0 16
+Astaro Security Linux 2.0 23
+MandrakeSoft Linux Mandrake 8.0
+MandrakeSoft Linux Mandrake 8.1
+MandrakeSoft Linux Mandrake 8.2
+RedHat Linux 7.3
+RedHat Linux 8.0
+S.u.S.E. Linux 7.1
+S.u.S.E. Linux 7.2
+S.u.S.E. Linux 7.3
+S.u.S.E. Linux 8.0
Linux kernel 2.4.19 -pre6
Linux kernel 2.4.19 -pre5
Linux kernel 2.4.19 -pre4
Linux kernel 2.4.19 -pre3
Linux kernel 2.4.19 -pre2
Linux kernel 2.4.19 -pre1
Linux kernel 2.4.19
+Conectiva Linux 8.0
+Conectiva Linux Enterprise Edition 1.0
+MandrakeSoft Linux Mandrake 9.0
+S.u.S.E. Linux 8.1
Linux kernel 2.4.20
+CRUX CRUX Linux 1.0
+RedHat Linux 9.0 i386 详细描述
Linux Kernel没有能够正确处理某种特别类型的网络流量,远程攻击者可能通过利用此漏洞发送恶意的TCP/IP包使目标系统消耗大量资源而导致拒绝服务攻击。
解决方案
RedHat和Debian已经发布了补丁修复此漏洞。
相关信息
[RHSA-2003:187-01] Updated 2.4 kernel fixes vulnerabilities and driver bugs
http://archives.neohapsis.com/archives/bugtraq/2003-06/0016.html
|
