CVE-2014-0101: CVE-2014-0101

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2014-0101

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The sctp_sf_do_5_1D_ce function in net/sctp/sm_statefuns.c in the Linux kernel through 3.13.6 does not validate certain auth_enable and auth_capable fields before making an sctp_sf_authenticate call, which allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) via an SCTP handshake with a modified INIT chunk and a crafted AUTH chunk before a COOKIE_ECHO chunk.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Linux kernel 代码问题漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel 3.13.6版本及之前版本存在代码问题漏洞，该漏洞源于程序调用sctp_sf_authenticate之前没有验证auth_enable和auth_capable字段。远程攻击者利用该漏洞导致系统拒绝服务。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2014-0101

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2014-0101

Please Login to view more intelligence information

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=ec0223ec48a90cb605244b45f7c62de856403729x_refsource_CONFIRM
https://github.com/torvalds/linux/commit/ec0223ec48a90cb605244b45f7c62de856403729x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=1070705x_refsource_CONFIRM
http://support.f5.com/kb/en-us/solutions/public/15000/300/sol15317.htmlx_refsource_CONFIRM
http://www.securityfocus.com/bid/65943vdb-entryx_refsource_BID
http://secunia.com/advisories/59216third-party-advisoryx_refsource_SECUNIA
http://www.ubuntu.com/usn/USN-2174-1vendor-advisoryx_refsource_UBUNTU
http://www.ubuntu.com/usn/USN-2173-1vendor-advisoryx_refsource_UBUNTU
http://rhn.redhat.com/errata/RHSA-2014-0432.htmlvendor-advisoryx_refsource_REDHAT
http://rhn.redhat.com/errata/RHSA-2014-0328.htmlvendor-advisoryx_refsource_REDHAT
http://rhn.redhat.com/errata/RHSA-2014-0419.htmlvendor-advisoryx_refsource_REDHAT
http://www.openwall.com/lists/oss-security/2014/03/04/6mailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2014-0101

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2014-0101

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2014-0101

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2014-0101

III. Intelligence Information for CVE-2014-0101

IV. Related Vulnerabilities

V. Comments for CVE-2014-0101

Leave a comment