CVE-2006-2444
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2006-2444
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The snmp_trap_decode function in the SNMP NAT helper for Linux kernel before 2.6.16.18 allows remote attackers to cause a denial of service (crash) via unspecified remote attack vectors that cause failures in snmp_trap_decode that trigger (1) frees of random memory or (2) frees of previously-freed memory (double-free) by snmp_trap_decode as well as its calling function, as demonstrated via certain test cases of the PROTOS SNMP test suite.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Linux Kernel SNMP NAT Helper snmp_trap_decode()函数 远程拒绝服务漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 Linux Kernel在处理SNMP报文时存在拒绝服务漏洞,远程攻击者可能利用此漏洞导致内核崩溃。 当Kernel加载ip_nat_snmp_basic模块时会对来自UDP 161/162端口上的报文做NAT,snmp_trap_decode()函数实现上的问题会导致多次释放同一内存,最终导致内存破坏从而内核崩溃。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Shenlong Deep Dive — AI Deep Analysis
10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2006-2444
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2006-2444
请登录查看更多情报信息。
- http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.18x_refsource_CONFIRM
- ASA-2006-203 (RHSA-2006-0617)x_refsource_CONFIRM
- http://support.avaya.com/elmodocs2/security/ASA-2006-180.htmx_refsource_CONFIRM
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11318vdb-entrysignaturex_refsource_OVAL
- https://nvd.nist.gov/vuln/detail/CVE-2006-2444
Same Patch Batch · n/a · 2006-05-25 · 19 CVEs total
| CVE-2006-2587 | PunkBuster WebTool HTTP服务器组件 远程缓冲区溢出漏洞 | |
| CVE-2006-2607 | Vixie Cron PAM_Limits 本地权限提升漏洞 | |
| CVE-2006-2606 | Chatty 用户名 跨站脚本攻击(XSS)漏洞 | |
| CVE-2006-2605 | DSChat 聊天框 跨站脚本攻击(XSS)漏洞 | |
| CVE-2006-2592 | DSChat 未明漏洞 | |
| CVE-2006-2591 | e107 未明漏洞 | |
| CVE-2006-2590 | e107 未明SQL注入漏洞 | |
| CVE-2006-2589 | MyBB rss.php SQL注入漏洞 | |
| CVE-2006-2588 | Russcom PHPImages .gif文件 任意文件上传漏洞 | |
| CVE-2005-4804 | Sun Java系统应用服务器Web应用程序JAR泄露漏洞 | |
| CVE-2006-2586 | IpLogger HTTP请求 跨站脚本攻击(XSS) 漏洞 | |
| CVE-2006-2585 | Destiney Links Script ID参数 SQL注入漏洞 | |
| CVE-2006-2584 | SkyeBox post.php 多个跨站脚本(XSS)漏洞 | |
| CVE-2006-2583 | Nucleus nucleus/libs/PLUGINADMIN.php PHP远程文件包含漏洞 | |
| CVE-2006-2582 | RWiki 编辑表单 任意代码执行漏洞 | |
| CVE-2006-2581 | Rwiki Wiki内容 跨站脚本攻击(XSS)漏洞 | |
| CVE-2005-4806 | Sun Java System Web Proxy Server 多个未明漏洞 | |
| CVE-2005-4805 | Sun Java系统应用服务器Java Server页面源码泄露漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8276
bettercap MySQL Server mysql_server.go integer coercion - CVE-2026-8275
bettercap zerogod IPP Service zerogod_ipp_primitives.go ippR - CVE-2026-8270
Open5GS SMF ogs_nas_parse_qos_rules denial of service - CVE-2026-8269
Open5GS SMF smf_nsmf_handle_create_sm_context denial of serv - CVE-2026-8268
Open5GS SMF OpenAPI_list_create denial of service
V. Comments for CVE-2006-2444
No comments yet