Strix
26.1K

CVE-2011-4913

UnknownEPSS 4.18%

Last modified

CVE-2011-4913 is a vulnerability of currently unknown severity. The rose_parse_ccitt function in net/rose/rose_subr.c in the Linux kernel before 2.6.39 does not validate the FAC_CCITT_DEST_NSAP and FAC_CCITT_SRC_NSAP fields, which allows remote attackers to (1) cause a denial of service (integer underflow, heap memory corruption, and panic) via a small length value in data sent to a ROSE socket, or (2) conduct stack-based buffer overflow attacks via a large length value in data sent to a ROSE socket.. EPSS estimates a 4.18% chance of exploitation in the next 30 days.

Description

The rose_parse_ccitt function in net/rose/rose_subr.c in the Linux kernel before 2.6.39 does not validate the FAC_CCITT_DEST_NSAP and FAC_CCITT_SRC_NSAP fields, which allows remote attackers to (1) cause a denial of service (integer underflow, heap memory corruption, and panic) via a small length value in data sent to a ROSE socket, or (2) conduct stack-based buffer overflow attacks via a large length value in data sent to a ROSE socket.

Metrics

EPSS Probability
4.18%

89.6th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersionsUpdate
NovellSuse Linux Enterprise Server10.0Sp4
LinuxLinux Kernel<= 2.6.38.8
LinuxLinux Kernel2.6.38
LinuxLinux Kernel2.6.38.1
LinuxLinux Kernel2.6.38.2
LinuxLinux Kernel2.6.38.3
LinuxLinux Kernel2.6.38.4
LinuxLinux Kernel2.6.38.5
LinuxLinux Kernel2.6.38.6
LinuxLinux Kernel2.6.38.7

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2011-4913?
The rose_parse_ccitt function in net/rose/rose_subr.c in the Linux kernel before 2.6.39 does not validate the FAC_CCITT_DEST_NSAP and FAC_CCITT_SRC_NSAP fields, which allows remote attackers to (1) cause a denial of service (integer underflow, heap memory corruption, and panic) via a small length value in data sent to a ROSE socket, or (2) conduct stack-based buffer overflow attacks via a large length value in data sent to a ROSE socket.
How severe is CVE-2011-4913?
Severity scoring for CVE-2011-4913 is pending analysis. The EPSS model estimates a 4.18% probability of exploitation in the next 30 days.
How do I fix CVE-2011-4913?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2011-4913?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST