CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-1865

The ipv6_getsockopt_sticky function in the kernel in Red Hat Enterprise Linux (RHEL) Beta 5.1.0 allows local users to obtain sensitive information (kernel memory contents) via a negative value of the len parameter. NOTE: this issue has been disputed in a bug comment, stating that "len is ignored when copying header info to the user's buffer.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 16.0%

CVSS Severity

CVSS v2 Score 1.9

References

http://osvdb.org/45909
https://bugzilla.redhat.com/show_bug.cgi?id=232045
http://osvdb.org/45909
https://bugzilla.redhat.com/show_bug.cgi?id=232045

Products affected by CVE-2007-1865

Redhat » Enterprise Linux » Version: 5.1.0

cpe:2.3:o:redhat:enterprise_linux:5.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-1865

Products

Pricing

Contact Us