CVE-2007-0771 : The utrace support in Linux kernel 2.6.18, and other versions, allows local users to cause a denial of service (system h

The utrace support in Linux kernel 2.6.18, and other versions, allows local users to cause a denial of service (system hang) related to "MT exec + utrace_attach spin failure mode," as demonstrated by ptrace-thrash.c.

Published 2007-05-02 22:19:00

Updated 2017-10-11 01:31:39

Source Red Hat, Inc.

View at NVD, CVE.org

Vulnerability category: Denial of service

Threat overview for CVE-2007-0771

Top countries where our scanners detected CVE-2007-0771

Top open port discovered on systems with this issue 53

IPs affected by CVE-2007-0771 3,159

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2007-0771!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2007-0771

Probability of exploitation activity in the next 30 days: 0.04%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 6 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2007-0771

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.9	MEDIUM	AV:L/AC:L/Au:N/C:N/I:N/A:C	3.9	6.9	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Complete

References for CVE-2007-0771

Products affected by CVE-2007-0771

Redhat » Enterprise Linux » Version: 5.0 Desktop Workstation Edition
cpe:2.3:o:redhat:enterprise_linux:5.0:*:desktop_workstation:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux » Version: 5.0 Desktop Edition
cpe:2.3:o:redhat:enterprise_linux:5.0:*:desktop:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux » Version: 5.0 Server Edition
cpe:2.3:o:redhat:enterprise_linux:5.0:*:server:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.18 Update RC1
cpe:2.3:o:linux:linux_kernel:2.6.18:rc1:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.18 Update RC2
cpe:2.3:o:linux:linux_kernel:2.6.18:rc2:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.18 Update RC5
cpe:2.3:o:linux:linux_kernel:2.6.18:rc5:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.18 Update RC3
cpe:2.3:o:linux:linux_kernel:2.6.18:rc3:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.18 Update RC4
cpe:2.3:o:linux:linux_kernel:2.6.18:rc4:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.18
cpe:2.3:o:linux:linux_kernel:2.6.18:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.18 Update RC6
cpe:2.3:o:linux:linux_kernel:2.6.18:rc6:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.18 Update RC7
cpe:2.3:o:linux:linux_kernel:2.6.18:rc7:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.18.1
cpe:2.3:o:linux:linux_kernel:2.6.18.1:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.18.3
cpe:2.3:o:linux:linux_kernel:2.6.18.3:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.18.2
cpe:2.3:o:linux:linux_kernel:2.6.18.2:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.18.4
cpe:2.3:o:linux:linux_kernel:2.6.18.4:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2007-0771

Threat overview for CVE-2007-0771

Exploit prediction scoring system (EPSS) score for CVE-2007-0771

CVSS scores for CVE-2007-0771

References for CVE-2007-0771

Products affected by CVE-2007-0771