National Vulnerability Database (NVD) National Vulnerability Database (CVE-2009-4536)

National Cyber Awareness System

Vulnerability Summary for CVE-2009-4536

Original release date:01/12/2010

Last revised:03/19/2012

Source: US-CERT/NIST

Overview

drivers/net/e1000/e1000_main.c in the e1000 driver in the Linux kernel 2.6.32.3 and earlier handles Ethernet frames that exceed the MTU by processing certain trailing payload data as if it were a complete frame, which allows remote attackers to bypass packet filters via a large packet with a crafted payload. NOTE: this vulnerability exists because of an incorrect fix for CVE-2009-1385.

Impact

CVSS Severity (version 2.0):

CVSS v2 Base Score:7.8 (HIGH) (AV:N/AC:L/Au:N/C:N/I:N/A:C) (legend)

Impact Subscore: 6.9

Exploitability Subscore: 10.0

CVSS Version 2 Metrics:

Access Vector: Network exploitable

Access Complexity: Low

Authentication: Not required to exploit

Impact Type:Allows disruption of serviceUnknown

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

External Source: REDHAT

Name: RHSA-2010:0095

Hyperlink:https://rhn.redhat.com/errata/RHSA-2010-0095.html

External Source: CONFIRM

Name: https://bugzilla.redhat.com/show_bug.cgi?id=552126

Hyperlink:https://bugzilla.redhat.com/show_bug.cgi?id=552126

External Source: XF

Name: kernel-e1000main-security-bypass(55648)

Hyperlink:http://xforce.iss.net/xforce/xfdb/55648

External Source: CONFIRM

Name: http://www.vmware.com/security/advisories/VMSA-2011-0009.html

Hyperlink:http://www.vmware.com/security/advisories/VMSA-2011-0009.html

External Source: BID

Name: 37519

Hyperlink:http://www.securityfocus.com/bid/37519

External Source: REDHAT

Name: RHSA-2010:0882

Hyperlink:http://www.redhat.com/support/errata/RHSA-2010-0882.html

External Source: REDHAT

Name: RHSA-2010:0111

Hyperlink:http://www.redhat.com/support/errata/RHSA-2010-0111.html

External Source: REDHAT

Name: RHSA-2010:0053

Hyperlink:http://www.redhat.com/support/errata/RHSA-2010-0053.html

External Source: REDHAT

Name: RHSA-2010:0041

Hyperlink:http://www.redhat.com/support/errata/RHSA-2010-0041.html

External Source: REDHAT

Name: RHSA-2010:0020

Hyperlink:http://www.redhat.com/support/errata/RHSA-2010-0020.html

External Source: REDHAT

Name: RHSA-2010:0019

Hyperlink:http://www.redhat.com/support/errata/RHSA-2010-0019.html

External Source: MLIST

Name: [oss-security] 20091231 Re: CVE requests - kernel security regressions for CVE-2009-1385/and -1389

Hyperlink:http://www.openwall.com/lists/oss-security/2009/12/31/1

External Source: MLIST

Name: [oss-security] 20091229 Re: CVE requests - kernel security regressions for CVE-2009-1385/and -1389

Hyperlink:http://www.openwall.com/lists/oss-security/2009/12/29/2

External Source: MLIST

Name: [oss-security] 20091228 CVE requests - kernel security regressions for CVE-2009-1385/and -1389

Hyperlink:http://www.openwall.com/lists/oss-security/2009/12/28/1

External Source: DEBIAN

Name: DSA-2005

Hyperlink:http://www.debian.org/security/2010/dsa-2005

External Source: DEBIAN

Name: DSA-1996

Hyperlink:http://www.debian.org/security/2010/dsa-1996

External Source: SECTRACK

Name: 1023420

Hyperlink:http://securitytracker.com/id?1023420

External Source: SECUNIA

Name: 38779

Hyperlink:http://secunia.com/advisories/38779

External Source: SECUNIA

Name: 38610

Hyperlink:http://secunia.com/advisories/38610

External Source: SECUNIA

Name: 38492

Hyperlink:http://secunia.com/advisories/38492

External Source: SECUNIA

Name: 38296

Hyperlink:http://secunia.com/advisories/38296

External Source: SECUNIA

Name: 38276

Hyperlink:http://secunia.com/advisories/38276

External Source: SECUNIA

Name: 38031

Type: Advisory

Hyperlink:http://secunia.com/advisories/38031

External Source: SECUNIA

Name: 35265

Type: Advisory

Hyperlink:http://secunia.com/advisories/35265

External Source: OVAL

Name: oval:org.mitre.oval:def:7453

Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:7453

External Source: OVAL

Name: oval:org.mitre.oval:def:13226

Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:13226

External Source: OVAL

Name: oval:org.mitre.oval:def:12440

Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:12440

External Source: OVAL

Name: oval:org.mitre.oval:def:10607

Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10607

External Source: CONFIRM

Name: http://marc.info/?t=126203102000001&r=1&w=2

Hyperlink:http://marc.info/?t=126203102000001&r=1&w=2

External Source: SUSE

Name: SUSE-SA:2010:014

Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00000.html

External Source: SUSE

Name: SUSE-SA:2010:013

Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00007.html

External Source: SUSE

Name: SUSE-SA:2010:012

Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00005.html

External Source: SUSE

Name: SUSE-SA:2010:010

Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00002.html

External Source: SUSE

Name: SUSE-SA:2010:007

Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00008.html

External Source: SUSE

Name: SUSE-SA:2010:005

Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00005.html

External Source: FEDORA

Name: FEDORA-2010-1787

Hyperlink:http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035159.html

External Source: MISC

Name: http://events.ccc.de/congress/2009/Fahrplan/events/3596.en.html

Hyperlink:http://events.ccc.de/congress/2009/Fahrplan/events/3596.en.html

External Source: MISC

Name: http://blog.c22.cc/2009/12/27/26c3-cat-procsysnetipv4fuckups/

Hyperlink:http://blog.c22.cc/2009/12/27/26c3-cat-procsysnetipv4fuckups/

References to Check Content

Identifier:oval:org.mitre.oval:def:10607

Check System:http://oval.mitre.org/XMLSchema/oval-definitions-5

Hyperlink:http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:10607

Identifier:oval:org.mitre.oval:def:13226

Check System:http://oval.mitre.org/XMLSchema/oval-definitions-5

Hyperlink:http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:13226

Identifier:oval:org.mitre.oval:def:12440

Check System:http://oval.mitre.org/XMLSchema/oval-definitions-5

Hyperlink:http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:12440

Identifier:oval:org.mitre.oval:def:7453

Check System:http://oval.mitre.org/XMLSchema/oval-definitions-5

Hyperlink:http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:7453

Vulnerable software and versions

Configuration 1

* cpe:/o:linux:linux_kernel:2.6.20.20

* cpe:/o:linux:linux_kernel:2.6.20.19

* cpe:/o:linux:linux_kernel:2.6.19.7

* cpe:/o:linux:linux_kernel:2.6.20.16

* cpe:/o:linux:linux_kernel:2.6.19.5

* cpe:/o:linux:linux_kernel:2.6.19.6

* cpe:/o:linux:linux_kernel:2.6.19.4

* cpe:/o:linux:linux_kernel:2.6.25.5

* cpe:/o:linux:linux_kernel:2.6.23_rc1

* cpe:/o:linux:linux_kernel:2.6.24_rc4

* cpe:/o:linux:linux_kernel:2.6.24_rc5

* cpe:/o:linux:linux_kernel:2.4.36.4

* cpe:/o:linux:linux_kernel:2.4.36.5

* cpe:/o:linux:linux_kernel:2.4.36.1

* cpe:/o:linux:linux_kernel:2.6.22

* cpe:/o:linux:linux_kernel:2.4.36

* cpe:/o:linux:linux_kernel:2.6.18

* cpe:/o:linux:linux_kernel:2.4.36.3

* cpe:/o:linux:linux_kernel:2.6.23

* cpe:/o:linux:linux_kernel:2.4.36.2

* cpe:/o:linux:linux_kernel:2.6.25.16

* cpe:/o:linux:linux_kernel:2.6.25.17

* cpe:/o:linux:linux_kernel:2.6.22_rc7

* cpe:/o:linux:linux_kernel:2.6.21.6

* cpe:/o:linux:linux_kernel:2.6.22_rc1

* cpe:/o:linux:linux_kernel:2.6.23.10

* cpe:/o:linux:linux_kernel:2.6.21.7

* cpe:/o:linux:linux_kernel:2.6.24_rc1

* cpe:/o:linux:linux_kernel:2.6.24.6

* cpe:/o:linux:linux_kernel:2.6.25.4

* cpe:/o:linux:linux_kernel:2.6.25.13

* cpe:/o:linux:linux_kernel:2.6.25.3

* cpe:/o:linux:linux_kernel:2.6.25.14

* cpe:/o:linux:linux_kernel:2.6.24.1

* cpe:/o:linux:linux_kernel:2.6.24

* cpe:/o:linux:linux_kernel:2.6.25.10

* cpe:/o:linux:linux_kernel:2.6.25.11

* cpe:/o:linux:linux_kernel:2.4.36.6

* cpe:/o:linux:linux_kernel:2.6.22.1

* cpe:/o:linux:linux_kernel:2.2.27

* cpe:/o:linux:linux_kernel:2.6.25.12::x86_64

* cpe:/o:linux:linux_kernel:2.6.25.11::x86_64

* cpe:/o:linux:linux_kernel:2.6.25.8::x86_64

* cpe:/o:linux:linux_kernel:2.6.25.6

* cpe:/o:linux:linux_kernel:2.6.25.7::x86_64

* cpe:/o:linux:linux_kernel:2.6.25.7

* cpe:/o:linux:linux_kernel:2.6.25.6::x86_64

* cpe:/o:linux:linux_kernel:2.6.25.5::x86_64

* cpe:/o:linux:linux_kernel:2.6.25.4::x86_64

* cpe:/o:linux:linux_kernel:2.6.25.3::x86_64

* cpe:/o:linux:linux_kernel:2.6.25.2::x86_64

* cpe:/o:linux:linux_kernel:2.6.25.10::x86_64

* cpe:/o:linux:linux_kernel:2.6.25.1::x86_64

* cpe:/o:linux:linux_kernel:2.6.18:rc5

* cpe:/o:linux:linux_kernel:2.6.18:rc6

* cpe:/o:linux:linux_kernel:2.6.18:rc7

* cpe:/o:linux:linux_kernel:2.6.18:rc1

* cpe:/o:linux:linux_kernel:2.6.18:rc2

* cpe:/o:linux:linux_kernel:2.6.25.8

* cpe:/o:linux:linux_kernel:2.6.18:rc3

* cpe:/o:linux:linux_kernel:2.6.18:rc4

* cpe:/o:linux:linux_kernel:2.6.25.1

* cpe:/o:linux:linux_kernel:2.6.25.12

* cpe:/o:linux:linux_kernel:2.6.24.2

* cpe:/o:linux:linux_kernel:2.6.22.22

* cpe:/o:linux:linux_kernel:2.6.22.21

* cpe:/o:linux:linux_kernel:2.6.22.20

* cpe:/o:linux:linux_kernel:2.6.22.19

* cpe:/o:linux:linux_kernel:2.6

* cpe:/o:linux:linux_kernel:2.6.24.3

* cpe:/o:linux:linux_kernel:2.6.24.4

* cpe:/o:linux:linux_kernel:2.6.24.5

* cpe:/o:linux:linux_kernel:2.6.25

* cpe:/o:linux:linux_kernel:2.6.22.2

* cpe:/o:linux:linux_kernel:2.6.22.8

* cpe:/o:linux:linux_kernel:2.6.22.9

* cpe:/o:linux:linux_kernel:2.6.22.14

* cpe:/o:linux:linux_kernel:2.6.22.15

* cpe:/o:linux:linux_kernel:2.6.22.17

* cpe:/o:linux:linux_kernel:2.6.22.18

* cpe:/o:linux:linux_kernel:2.6.22.10

* cpe:/o:linux:linux_kernel:2.6.22.11

* cpe:/o:linux:linux_kernel:2.6.22.12

* cpe:/o:linux:linux_kernel:2.6.22.13

* cpe:/o:linux:linux_kernel:2.6.25.9

* cpe:/o:linux:linux_kernel:2.6.25.9::x86_64

* cpe:/o:linux:linux_kernel:2.6.25::x86_64

* cpe:/o:linux:linux_kernel:2.6.26

* cpe:/o:linux:linux_kernel:2.6.26.1

* cpe:/o:linux:linux_kernel:2.6.26.2

* cpe:/o:linux:linux_kernel:2.6.26.3

* cpe:/o:linux:linux_kernel:2.6.26.4

* cpe:/o:linux:linux_kernel:2.6.26.5

* cpe:/o:linux:linux_kernel:2.6.27

* cpe:/o:linux:linux_kernel:2.6.28 and previous versions

* cpe:/o:linux:linux_kernel:2.6.29.3

* cpe:/o:linux:linux_kernel:2.6.29:rc8-kk

* cpe:/o:linux:linux_kernel:2.6.29

* cpe:/o:linux:linux_kernel:2.6.29:git1

* cpe:/o:linux:linux_kernel:2.6.29.rc2-git1

* cpe:/o:linux:linux_kernel:2.6.29:rc1

* cpe:/a:linux:kernel:2.6.24.7

* cpe:/a:linux:kernel:2.6.25.15

* cpe:/o:linux:linux_kernel:2.6.23.15

* cpe:/o:linux:linux_kernel:2.6.23.17

* cpe:/o:linux:linux_kernel:2.6.23.16

* cpe:/o:linux:linux_kernel:2.6.23.11

* cpe:/o:linux:linux_kernel:2.6.23.9

* cpe:/o:linux:linux_kernel:2.6.23.13

* cpe:/o:linux:linux_kernel:2.6.25.2

* cpe:/o:linux:linux_kernel:2.6.23.12

* cpe:/o:linux:linux_kernel:2.6.21.5

* cpe:/o:linux:linux_kernel:2.6.20.21

* cpe:/o:linux:linux_kernel:2.6.23.8

* cpe:/o:linux:linux_kernel:2.6.20.18

* cpe:/o:linux:linux_kernel:2.6.20.17

* cpe:/o:linux:linux_kernel:2.6.30:rc7-git6 and previous versions

* cpe:/a:intel:e1000:7.4.27

* cpe:/a:intel:e1000:7.4.35 and previous versions

* cpe:/a:intel:e1000:7.3.20

* cpe:/a:intel:e1000:7.3.15

* cpe:/a:intel:e1000:7.2.9

* cpe:/a:intel:e1000:7.2.7

* cpe:/a:intel:e1000:7.1.9

* cpe:/a:intel:e1000:7.0.41

* cpe:/a:intel:e1000:7.0.33

* cpe:/a:intel:e1000:6.3.9

* cpe:/a:intel:e1000:6.2.15

* cpe:/a:intel:e1000:6.1.16

* cpe:/a:intel:e1000:6.0.60

* cpe:/a:intel:e1000:6.0.54

* cpe:/a:intel:e1000:5.7.6

* cpe:/a:intel:e1000:5.6.10

* cpe:/a:intel:e1000:5.6.10.1

* cpe:/a:intel:e1000:5.5.4

* cpe:/a:intel:e1000:5.4.11

* cpe:/a:intel:e1000:5.3.19

* cpe:/a:intel:e1000:5.2.52

* cpe:/a:intel:e1000:5.2.30.1

* cpe:/a:intel:e1000:5.2.22

* cpe:/o:linux:linux_kernel:2.6.30:rc3

* cpe:/o:linux:linux_kernel:2.6.30:rc2

* cpe:/o:linux:linux_kernel:2.6.30:rc1

* cpe:/o:linux:linux_kernel:2.6.29:rc2_git7

* cpe:/o:linux:linux_kernel:2.6.29.rc1

* cpe:/o:linux:linux_kernel:2.6.29:rc2

* cpe:/o:linux:linux_kernel:2.6.32:rc7

* cpe:/o:linux:linux_kernel:2.6.32:rc8

* cpe:/o:linux:linux_kernel:2.6.32:rc4

* cpe:/o:linux:linux_kernel:2.6.32:rc3

* cpe:/o:linux:linux_kernel:2.6.32:rc1

* cpe:/o:linux:linux_kernel:2.6.32:git-6

* cpe:/o:linux:linux_kernel:2.6.32

* cpe:/o:linux:linux_kernel:2.6.32:rc6

* cpe:/o:linux:linux_kernel:2.6.32:rc5

* cpe:/o:linux:linux_kernel:2.6.32.1

* cpe:/o:linux:linux_kernel:2.6.32.2

* cpe:/o:linux:linux_kernel:2.6.32.3 and previous versions

* Denotes Vulnerable Software

Technical Details

Vulnerability Type (View All)

Numeric Errors (CWE-189)

CVE Standard Vulnerability Entry:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4536