Main Vulnerability Database Exploits ID:10150 - Exploit for NULL pointer dereference in Linux kernel - CVE-2010-0437

ID:10150 - Exploit for NULL pointer dereference in Linux kernel - CVE-2010-0437

Published: July 3, 2024

Vulnerability identifier: #VU93715

Vulnerability risk: Medium

CVE-ID: CVE-2010-0437

CWE-ID: CWE-476

Exploitation vector: Remote access

Vulnerable software:
Linux kernel

Link to public exploit:

https://www.exploit-db.com/exploits/33635/

Vulnerability description

The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.

The ip6_dst_lookup_tail function in net/ipv6/ip6_output.c in the Linux kernel before 2.6.27 does not properly handle certain circumstances involving an IPv6 TUN network interface and a large number of neighbors, which allows attackers to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact via unknown vectors.

Remediation

Install update from vendor's website.

ID:10150 - Exploit for NULL pointer dereference in Linux kernel - CVE-2010-0437

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human