Info

Disclosure

Apr 08, 2004

Discovery

Unknown

Dates

Exploit

Apr 08, 2004

Solution

Unknown

Description

The Linux kernel contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when custom crafted ICMP fragments are sent to the kernel, which will trigger an ICMP TTL exceeded error packet containing data from memory in response. This will disclose information in memory, resulting in a loss of confidentiality.

Classification

Location: Local Access Required, Remote / Network Access
Attack Type: Information Disclosure, Input Manipulation
Impact: Loss of Confidentiality
Exploit: Exploit Public
Disclosure: OSVDB Verified

Solution

Upgrade to a kernel version of 2.2.19, 2.4.0 mainline, or higher, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by applying the vendor-supplied patch.

Products

Linux	Kernel	2.4.0-preX
		mainline 2.4.x
		2.2.18
		2.2.17
		2.2.16
		2.2.15
		2.2.14
		2.2.13
		2.2.12
		2.2.11
		2.2.10
		2.2.0x

References

Security Tracker: 1003325
CVE ID: 2002-0046 (see also: NVD)
ISS X-Force ID: 7998
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2002-01/0234.html
RedHat RHSA: RHSA-2002:007

Credit

Andrew Griffiths - andrewgtasmail.com -

Direct URL: http://osvdb.org/5394