Linux Kernel SCTP ASCONF Chunk Parameter Length Denial of Service

Strike ID:
D14-5u101
CVSS:
7.8 (AV:N/AC:L/Au:N/C:N/I:N/A:C)
False Positive:
f
Variants:
1
Year:
2014

Description

This strike exploits a denial of service vulnerability in the Linux kernel. Due to improper handling of the padding of SCTP ASCOF parameters with a certain size, a specially crafted SCTP packet can be sent to cause a kernel panic. Successful exploitation may cause the Linux kernel to crash, resulting in a denial of service condition.

CVE

References

Bid