CVE - CVE-2007-2878

CVE-ID
CVE-2007-2878	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
The VFAT compat ioctls in the Linux kernel before 2.6.21.2, when run on a 64-bit system, allow local users to corrupt a kernel_dirent struct and cause a denial of service (system crash) via unknown vectors.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BID:24134 URL:http://www.securityfocus.com/bid/24134 CONFIRM:http://support.avaya.com/elmodocs2/security/ASA-2007-474.htm CONFIRM:http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.21.2 DEBIAN:DSA-1479 URL:http://www.debian.org/security/2008/dsa-1479 OSVDB:35926 URL:~~http://osvdb.org/35926~~ (Obsolete source) OVAL:oval:org.mitre.oval:def:11674 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11674 REDHAT:RHSA-2007:0705 URL:http://www.redhat.com/support/errata/RHSA-2007-0705.html REDHAT:RHSA-2007:0939 URL:http://www.redhat.com/support/errata/RHSA-2007-0939.html SECUNIA:25505 URL:http://secunia.com/advisories/25505 SECUNIA:26133 URL:http://secunia.com/advisories/26133 SECUNIA:26139 URL:http://secunia.com/advisories/26139 SECUNIA:26760 URL:http://secunia.com/advisories/26760 SECUNIA:27436 URL:http://secunia.com/advisories/27436 SECUNIA:27747 URL:http://secunia.com/advisories/27747 SECUNIA:28626 URL:http://secunia.com/advisories/28626 UBUNTU:USN-486-1 URL:http://www.ubuntu.com/usn/usn-486-1 UBUNTU:USN-489-1 URL:http://www.ubuntu.com/usn/usn-489-1 UBUNTU:USN-510-1 URL:http://www.ubuntu.com/usn/usn-510-1 VUPEN:ADV-2007-2023 URL:~~http://www.vupen.com/english/advisories/2007/2023~~ (Obsolete source) XF:kernel-vfatioctls-dos(34669) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/34669
Assigning CNA
MITRE Corporation
Date Record Created
20070529	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20070529)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)