New Search

Data Leak in NIC

oval:org.mitre.oval:def:2665

Multiple ethernet Network Interface Card (NIC) device drivers do not pad frames with null bytes which allows remote attackers to obtain information from previous packets or kernel memory by using malformed packets as demonstrated by Etherleak.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Sun Solaris 7
Class:
vulnerability
Reference(s):
  • CVE-2003-0001
Product(s):
  • Sun Am7990 Ethernet Driver