ID:10318 - Exploit for Information exposure in Linux kernel - CVE-2006-1342

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:10318 - Exploit for Information exposure in Linux kernel - CVE-2006-1342

ID:10318 - Exploit for Information exposure in Linux kernel - CVE-2006-1342

Published: August 8, 2024


Vulnerability identifier: #VU95590
Vulnerability risk: Low
CVE-ID: CVE-2006-1342
CWE-ID: CWE-200
Exploitation vector: Local access
Vulnerable software:
Linux kernel

Link to public exploit:


Vulnerability description

The vulnerability allows a local user to gain access to sensitive information.

net/ipv4/af_inet.c in Linux kernel 2.4 does not clear sockaddr_in.sin_zero before returning IPv4 socket names from the (1) getsockname, (2) getpeername, and (3) accept functions, which allows local users to obtain portions of potentially sensitive memory.


Remediation

Install update from vendor's repository.