VDB
CVE-2010-0008
CVE-2010-0008
PUBLISHED
CVSS 7.800000190734863 HIGH
The sctp_rcv_ootb function in the SCTP implementation in the Linux kernel before 2.6.23 allows remote attackers to cause a denial of service (infinite loop) via (1) an Out Of The Blue (OOTB) chunk or (2) a chunk of zero length.
EPSS 4.15% · 88.9th percentile
Risk Scores
CVSS 2.0
7.800000190734863
EPSS Score
4.15%
88.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| linux | linux_kernel | 2.6.14.1, 0, 2.6 |
| n/a | n/a | n/a |
Exploit Intelligence
- 39295 (circl)
- RHSA-2010:0146 (circl)
- RHSA-2010:0147 (circl)
- [oss-security] 20100317 CVE-2010-0008 kernel: sctp remote denial of service (circl)
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=ece25dfa0991f65c4e1d26beb1c3c45bda4239b8 (circl)
- 43315 (circl)
- oval:org.mitre.oval:def:11160 (circl)
- http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.23 (circl)
- http://www.vmware.com/security/advisories/VMSA-2011-0003.html (circl)
- RHSA-2010:0342 (circl)
…and 2 more exploits
Timeline
- Mar 19, 2010 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 3, 2023 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- http://secunia.com/advisories/39295 advisory
- RHSA-2010:0146 vendor-advisory
- RHSA-2010:0147 vendor-advisory
- [oss-security] 20100317 CVE-2010-0008 kernel: sctp remote denial of service mailing-list
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=ece25dfa0991f65c4e1d26beb1c3c45bda4239b8 url
- 43315 third-party-advisory
- oval:org.mitre.oval:def:11160 vdb
- http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.23 url
- http://www.vmware.com/security/advisories/VMSA-2011-0003.html url
- RHSA-2010:0342 vendor-advisory
- 20110211 VMSA-2011-0003 Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX mailing-list
- https://bugzilla.redhat.com/show_bug.cgi?id=555658 url
- https://nvd.nist.gov/vuln/detail/CVE-2010-0008 advisory
- https://access.redhat.com/errata/RHSA-2010:0146 url
- https://access.redhat.com/errata/RHSA-2010:0147 url
- https://access.redhat.com/errata/RHSA-2010:0148 url
- https://access.redhat.com/errata/RHSA-2010:0149 url
- https://access.redhat.com/errata/RHSA-2010:0172 url
- https://access.redhat.com/errata/RHSA-2010:0342 url
- https://access.redhat.com/security/cve/CVE-2010-0008 url
…and 1 more