OpenCVE

The embedded Linux kernel in certain Sun-Brocade SilkWorm switches before 20070516 does not properly handle a situation in which a non-root user creates a kernel process, which allows attackers to cause a denial of service (oops and device reboot) via unspecified vectors.

No CVSS v4.0

No CVSS v3.1

Attack Vector Local

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

AV:N/AC:L/Au:N/C:N/I:N/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Brocade	Silkworm 12000 Director Silkworm 200e Switch Silkworm 24000 Director Silkworm 3250 Fabric Switch Silkworm 3850 Fabric Switch Silkworm 3900 Switch Silkworm 48000 Director Silkworm 4900 Fibre Channel Switch
Linux	Linux Kernel

Configuration 1 [-]

AND

cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

OR	cpe:2.3:h:brocade:silkworm_12000_director:-:::::::*
	cpe:2.3:h:brocade:silkworm_200e_switch:-:::::::*
	cpe:2.3:h:brocade:silkworm_24000_director:-:::::::*
	cpe:2.3:h:brocade:silkworm_3250_fabric_switch:-:::::::*
	cpe:2.3:h:brocade:silkworm_3850_fabric_switch:-:::::::*
	cpe:2.3:h:brocade:silkworm_3900_switch:-:::::::*
	cpe:2.3:h:brocade:silkworm_48000_director:-:::::::*
	cpe:2.3:h:brocade:silkworm_4900_fibre_channel_switch:-:::::::*

No data.

References

Link	Providers
http://osvdb.org/39117
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102752-1
http://www.securityfocus.com/bid/24036
https://exchange.xforce.ibmcloud.com/vulnerabilities/34495
https://nvd.nist.gov/vuln/detail/CVE-2007-2764
https://www.cve.org/CVERecord?id=CVE-2007-2764

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-05-18T22:00:00

Updated: 2024-08-07T13:49:57.278Z

Reserved: 2007-05-18T00:00:00

Link: CVE-2007-2764

Vulnrichment

No data.

NVD

Status : Modified

Published: 2007-05-18T22:30:00.000

Modified: 2024-11-21T00:31:36.223

Link: CVE-2007-2764

Redhat

Severity : Moderate

Publid Date: 2019-08-14T00:00:00Z

Links: CVE-2007-2764 - Bugzilla

Metrics

Attack Vector Local

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

Affected Vendors & Products

Metrics

Attack Vector Local

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object