CVE-2011-3347

Advisory lineage Upstream: 0 Downstream: 4

Downstream

RHSA-2011:1386 RHSA-2011:1530 RHSA-2012:0116 UBUNTU-CVE-2011-3347

Modified

Published: 08 Jun 2013, 10:00

Last modified:06 Aug 2024, 23:29

Vulnerability Summary

Overall Risk (default)

low

19/100

CVSS Score

4.6 MEDIUM

v2.0 (nvd)

EPSS Score

0.54% LOW

1% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

08 Jun 2013, 10:00

Published

Vulnerability first disclosed

06 Aug 2024, 23:29

Last Modified

Vulnerability information updated

Description

A certain Red Hat patch to the be2net implementation in the kernel package before 2.6.32-218.el6 on Red Hat Enterprise Linux (RHEL) 6, when promiscuous mode is enabled, allows remote attackers to cause a denial of service (system crash) via non-member VLAN packets.

CVSS Metrics

v2.0•MEDIUM•Score: 4.6AV:A/AC:H/Au:N/C:N/I:N/A:C

EPSS Trends

Current EPSS score: 0.54%• Percentile: 68%

Affected Systems

redhat•enterprise_linux
6.0

References (2)

https://bugzilla.redhat.com/show_bug.cgi?id=736425
https://oss.oracle.com/git/?p=redpatch.git%3Ba=commit%3Bh=fadca7bdc43b02f518585d9547019966415cadfd