mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-05 18:27:17 +00:00
932 B
932 B
CVE-2016-3136
Description
The mct_u232_msr_to_state function in drivers/usb/serial/mct_u232.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted USB device without two interrupt-in endpoint descriptors.
POC
Reference
- http://www.ubuntu.com/usn/USN-2970-1
- http://www.ubuntu.com/usn/USN-3000-1
- https://bugzilla.redhat.com/show_bug.cgi?id=1283370
- https://bugzilla.redhat.com/show_bug.cgi?id=1317007
- https://www.exploit-db.com/exploits/39541/
Github
No PoCs found on GitHub currently.