CVE-2006-6106

NONECVSS 0.0

0.0

Multiple buffer overflows in the cmtp_recv_interopmsg function in the Bluetooth driver (net/bluetooth/cmtp/capi.c) in the Linux kernel 2.4.22 up to 2.4.33.4 and 2.6.2 before 2.6.18.6, and 2.6.19.x, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via CAPI messages with a large value for the length of the (1) manu (manufacturer) or (2) serial (serial number) field.

🔗 References (82)

secalert@redhathttp://kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.33.5
secalert@redhathttp://marc.info/?l=linux-kernel&m=116614741607528&w=2
secalert@redhathttp://marc.info/?l=linux-kernel&m=116648929829440&w=2
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2007-0014.html
secalert@redhathttp://secunia.com/advisories/23408
secalert@redhathttp://secunia.com/advisories/23427
secalert@redhathttp://secunia.com/advisories/23593
secalert@redhathttp://secunia.com/advisories/23609
secalert@redhathttp://secunia.com/advisories/23752
secalert@redhathttp://secunia.com/advisories/23997
secalert@redhathttp://secunia.com/advisories/24098
secalert@redhathttp://secunia.com/advisories/24105
secalert@redhathttp://secunia.com/advisories/24206
secalert@redhathttp://secunia.com/advisories/24547
secalert@redhathttp://secunia.com/advisories/25226

Is Your Infrastructure Affected by CVE-2006-6106?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2006-6106

📅 Published

🔄 Last Modified

🔗 References (82)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2006-6106?