CVE-2009-4005 — Vulnetix

Try Vulnetix Request Demo

CVE-2009-4005 PUBLISHED CVSS 7.199999809265137 HIGH

The collect_rx_frame function in drivers/isdn/hisax/hfc_usb.c in the Linux kernel before 2.6.32-rc7 allows attackers to have an unspecified impact via a crafted HDLC packet that arrives over ISDN and triggers a buffer under-read.

EPSS 0.05% · 15.7th percentile

Risk Scores

CVSS v2.0

7.199999809265137

EPSS Score

0.05%

15.7th percentile

Affected Products

Vendor	Product	Versions
linux	linux_kernel	2.6.9, 2.6.1, 0
n/a	n/a	n/a

Timeline

Nov 20, 2009 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score

References

http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.32-rc7 url
38276 third-party-advisory
MDVSA-2010:030 vendor-advisory
37036 vdb
kernel-hfcusb-privilege-escalation(54310) vdb
SUSE-SA:2009:061 vendor-advisory
USN-864-1 vendor-advisory
SUSE-SA:2010:001 vendor-advisory
37720 third-party-advisory
37909 third-party-advisory
oval:org.mitre.oval:def:11155 vdb
SUSE-SA:2009:064 vendor-advisory
SUSE-SA:2010:013 vendor-advisory
ADV-2009-3267 vdb
SUSE-SA:2010:005 vendor-advisory
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=286e633ef0ff5bb63c07b4516665da8004966fec url
DSA-2005 vendor-advisory
FEDORA-2009-13098 vendor-advisory
38017 third-party-advisory
https://nvd.nist.gov/vuln/detail/CVE-2009-4005 advisory

…and 1 more

Open in Interactive Console →