CVE-2006-3468

Name of the Vulnerable Software and Affected Versions Linux kernel versions 2.6.x

Description The issue allows remote attackers to cause a denial of service, resulting in a file system panic. This occurs when a crafted UDP packet with a V2 lookup procedure specifies a bad file handle, triggering an error that causes an exported directory to be remounted read-only. The attack is possible when both NFS and EXT3 are used.

Recommendations For Linux kernel version 2.6.x, consider restricting access to the NFS service until a fix is available, and avoid using the V2 lookup procedure with untrusted input to minimize the risk of exploitation.