CVE-2007-5093

NONECVSS 0.0

0.0

The disconnect method in the Philips USB Webcam (pwc) driver in Linux kernel 2.6.x before 2.6.22.6 "relies on user space to close the device," which allows user-assisted local attackers to cause a denial of service (USB subsystem hang and CPU consumption in khubd) by not closing the device after the disconnect is invoked. NOTE: this rarely crosses privilege boundaries, unless the attacker can convince the victim to unplug the affected device.

🔗 References (44)

secalert@redhathttp://marc.info/?l=linux-kernel&m=118873457814808&w=2
secalert@redhathttp://marc.info/?l=linux-kernel&m=118880154122548&w=2
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2008-0972.html
secalert@redhathttp://secunia.com/advisories/26994
secalert@redhathttp://secunia.com/advisories/28170
secalert@redhathttp://secunia.com/advisories/28706
secalert@redhathttp://secunia.com/advisories/28971
secalert@redhathttp://secunia.com/advisories/29058
secalert@redhathttp://secunia.com/advisories/30294
secalert@redhathttp://secunia.com/advisories/32799
secalert@redhathttp://www.debian.org/security/2007/dsa-1381
secalert@redhathttp://www.debian.org/security/2008/dsa-1503
secalert@redhathttp://www.debian.org/security/2008/dsa-1504
secalert@redhathttp://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.6
secalert@redhathttp://www.mandriva.com/security/advisories?name=MDVSA-2008:008

Is Your Infrastructure Affected by CVE-2007-5093?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2007-5093

📅 Published

🔄 Last Modified

🔗 References (44)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2007-5093?