mirror of
https://github.com/0xMarcio/cve.git
synced 2025-12-16 20:27:21 +00:00
868 B
868 B
CVE-2010-4251
Description
The socket implementation in net/core/sock.c in the Linux kernel before 2.6.34 does not properly manage a backlog of received packets, which allows remote attackers to cause a denial of service (memory consumption) by sending a large amount of network traffic, as demonstrated by netperf UDP tests.
POC
Reference
- http://kerneltrap.org/mailarchive/linux-netdev/2010/3/3/6271093/thread
- http://www.vmware.com/security/advisories/VMSA-2011-0012.html
Github
No PoCs found on GitHub currently.