Lksctp: >> Stream Control Transmission Protocol >> 2.6.16 Security Vulnerabilities
Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (deadlock) via a large number of small messages to a receiver application that cannot process the messages quickly enough, which leads to "spillover of the receive buffer."
CVSS Score
7.5
EPSS Score
0.032
Published
2006-05-09
Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (kernel panic) via incoming IP fragmented (1) COOKIE_ECHO and (2) HEARTBEAT SCTP control chunks.
CVSS Score
7.8
EPSS Score
0.081
Published
2006-05-09