Home > Vulnerability Database > CVE-2006-0744

Mend.io Vulnerability Database

CVE-2006-0744

Date: April 18, 2006

Linux kernel before 2.6.16.5 does not properly handle uncanonical return addresses on Intel EM64T CPUs, which reports an exception in the SYSRET instead of the next instruction, which causes the kernel exception handler to run on the user stack with the wrong GS.

Severity Score

6.2

Related Resources (35)

Url: http://www.vupen.com/english/advisories/2006/1475

Url: http://www.novell.com/linux/security/advisories/2006_47_kernel.html

Url: http://www.securityfocus.com/bid/17541

Url: http://www.novell.com/linux/security/advisories/2006-05-31.html

Url: http://secunia.com/advisories/19639

Url: http://lwn.net/Alerts/180820/

Url: http://secunia.com/advisories/19735

Url: http://www.vupen.com/english/advisories/2006/1390

Url: http://www.novell.com/linux/security/advisories/2006_42_kernel.html

Url: http://secunia.com/advisories/21179

Url: http://secunia.com/advisories/21136

Url: http://secunia.com/advisories/21498

Url: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9732

Url: http://www.mandriva.com/security/advisories?name=MDKSA-2006:150

Url: https://nvd.nist.gov/vuln/detail/CVE-2006-0744

Url: http://support.avaya.com/elmodocs2/security/ASA-2006-161.htm

Url: http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.5

Url: http://www.vupen.com/english/advisories/2006/2554

Url: http://www.debian.org/security/2006/dsa-1103

Url: http://www.osvdb.org/24639

Url: http://secunia.com/advisories/20716

Url: http://secunia.com/advisories/20914

Url: http://support.avaya.com/elmodocs2/security/ASA-2006-180.htm

Url: https://exchange.xforce.ibmcloud.com/vulnerabilities/25869

Url: http://www.redhat.com/support/errata/RHSA-2006-0493.html

Url: http://www.ubuntu.com/usn/usn-302-1

Url: http://secunia.com/advisories/21983

Url: http://secunia.com/advisories/20398

Url: http://secunia.com/advisories/20157

Url: http://www.redhat.com/support/errata/RHSA-2006-0437.html

Url: http://secunia.com/advisories/21745

Url: http://secunia.com/advisories/20237

Url: http://www.mandriva.com/security/advisories?name=MDKSA-2006:086

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2006-0744

Url: https://www.mend.io/vulnerability-database/CVE-2006-0744

Severity Score

6.2

Weakness Type (CWE)

Input Validation

CWE-20

CVSS v3.1

Base Score:	6.2
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	HIGH

CVSS v2

Base Score:	4.9
Access Vector (AV):	LOCAL
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	COMPLETE
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2006-0744

Date: April 18, 2006

Severity Score

Related Resources (35)

Severity Score

Weakness Type (CWE)

CVSS v3.1

CVSS v2

Do you need more information?