Intrusion Prevention



This indicates an attack attempt against a Denial of Service vulnerability in the Linux Kernel.
The vulnerability is caused by insufficient boundary validation when defragmenting an SMB "Transaction2" response. If an attacker is able to control a Samba server or to intercept and modify the SMB traffic, they can attempt to exploit this vulnerability to cause a Denial of Service condition.

Affected Products

Linux Kernel Project Linux Kernel 2.4.0 - 2.4.27


Denial of Service: Remote attackers can crash vulnerable systems.

Recommended Actions

Apply the latest update from the vendor.

CVE References