Definition

Data Leak in NIC

oval:org.mitre.oval:def:2665

Multiple ethernet Network Interface Card (NIC) device drivers do not pad frames with null bytes which allows remote attackers to obtain information from previous packets or kernel memory by using malformed packets as demonstrated by Etherleak.

Family:

unix

Status:

ACCEPTED

Platform(s):

Sun Solaris 7

Class:

vulnerability

Reference(s):

CVE-2003-0001

Product(s):

Sun Am7990 Ethernet Driver