PT-2007-3804 · Linux · Linux Kernel

Published

2007-05-03

Updated

2008-11-13

CVE-2007-2480

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.6.21

Description The issue is related to the udp lib get port function in the Linux kernel, which does not prevent binding to a port with a local address when there is already a bind to that port with a wildcard local address. This might allow local users to intercept local traffic for daemons or other applications.

Recommendations For Linux kernel versions prior to 2.6.21, update to a version 2.6.21 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-2480

Affected Products

Linux Kernel

PT-2007-3804 · Linux · Linux Kernel

CVE-2007-2480

Related Identifiers

Affected Products

References · 3