JVN/CVE Demo: Nvdinfos

NVD

Id: 68147
Name: CVE-2005-2456
Description: Array index overflow in the xfrm_sk_policy_insert function in xfrm_user.c in Linux kernel 2.6 allows local users to cause a denial of service (oops or deadlock) and possibly execute arbitrary code via a p->dir value that is larger than XFRM_POLICY_OUT, which is used as an index in the sock->sk_policy array.
Reject
CVSS Version: 2
CVSS Score: 2.1
Severity: Low
CVSS Base Score: 2.1
CVSS Impact Subscore: 2.9
CVSS Exploit Subscore: 3.9
CVSS Vector: (AV:L/AC:L/Au:N/C:N/I:N/A:P)
Pub Date: 2017-07-18
Published: 2005-08-04
Modified Date: 2017-07-10
Seq: 2005-2456

Actions

Related NVD References

Id	NVD Id	NVD No.	Reference	Actions
352248	68147	CVE-2005-2456	oval:org.mitre.oval:def:10858	View
352249	68147	CVE-2005-2456	DSA-921	View
352250	68147	CVE-2005-2456	DSA-922	View
352251	68147	CVE-2005-2456	http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=blobdiff;h=8da3e25b2c4c1f305fd85428d3a9eb62b543bfba;hp=ecade4893a139cc35d4fe345ce70242ede5358c4;hb=a4f1bac62564049ea4718c4624b0fadc9f597c84;f=net/xfrm/xfrm_user.c	View
352252	68147	CVE-2005-2456	http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=a4f1bac62564049ea4718c4624b0fadc9f597c84	View
352253	68147	CVE-2005-2456	http://www.mail-archive.com/netdev@vger.kernel.org/msg00520.html	View
352254	68147	CVE-2005-2456	SUSE-SA:2005:050	View
352255	68147	CVE-2005-2456	RHSA-2005:514	View
352256	68147	CVE-2005-2456	RHSA-2005:663	View
352257	68147	CVE-2005-2456	FLSA:157459-3	View
352258	68147	CVE-2005-2456	14477	View
352259	68147	CVE-2005-2456	USN-169-1	View
352260	68147	CVE-2005-2456	ADV-2005-1878	View
352261	68147	CVE-2005-2456	linux-kernel-xfrm-dos(21710)	View

Related JVN

Id	Name	Title	Summary	Cveinfo Name	Cveinfo Id	Nvdinfo Name	Nvdinfo Id	Cvssv2	Cvssv3	Jvnurl	Published Date	Last Updated Date	Actions
62266	JVNDB-2005-000468	Linux Kernel の XFRM における配列インデックスオーバーフローの脆弱性	Linux Kernel の xfrm_sk_policy_insert() 関数には、ユーザによる入力値の妥当性がに対するチェックが不適切であるため、配列インデックスでバッファオーバーフローが発生する脆弱性が存在します。	CVE-2005-2456	13660	CVE-2005-2456	68147	2.1		http://jvndb.jvn.jp/ja/contents/2005/JVNDB-2005-000468.html	2005-08-05	2007-04-01	View

Message	Memory use
Component initialization	1.39 MB
Controller action start	1.49 MB
Controller render start	2.28 MB
View render complete	7.89 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	9.30
Event: Controller.initialize	0.02
Event: Controller.startup	0.06
Controller action	274.08
Event: Controller.beforeRender	3.94
» Processing toolbar data	3.85
Rendering View	241.64
» Event: View.beforeRender	0.02
» Rendering APP/View/Nvdinfos/view.ctp	234.50
» Event: View.afterRender	0.03
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	5.03
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	1.47
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Http Connection	close
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/nvdinfos/view/68147
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/nvdinfos/view/68147
Remote Port	63387
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	3.142.200.134
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http Cookie	advanced-frontend=6ojvm76hj0lplcpc7a6iei1ll6
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
X Dostranslated Ip	3.142.200.134
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	3.142.200.134
Unique Id	aA9iCARRsXwarpGRPuvn5AAAAQo
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect X Dostranslated Ip	3.142.200.134
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	3.142.200.134
Redirect Unique Id	aA9iCARRsXwarpGRPuvn5AAAAQo
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect X Dostranslated Ip	3.142.200.134
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	3.142.200.134
Redirect Redirect Unique Id	aA9iCARRsXwarpGRPuvn5AAAAQo
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1745838600.0307
Request Time	1745838600

NVD

Actions

Related NVD References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files