ByteOS Network

CVE Vulnerability Details :

CVE-2007-5093

PUBLISHED

More Info Official Page

Assigner-redhat

Assigner Org ID-53f830b8-0a3f-465b-8143-3b8a9948e749

Published At-26 Sep, 2007 | 21:00

Updated At-07 Aug, 2024 | 15:17

▼CVE Numbering Authority (CNA)

The disconnect method in the Philips USB Webcam (pwc) driver in Linux kernel 2.6.x before 2.6.22.6 "relies on user space to close the device," which allows user-assisted local attackers to cause a denial of service (USB subsystem hang and CPU consumption in khubd) by not closing the device after the disconnect is invoked. NOTE: this rarely crosses privilege boundaries, unless the attacker can convince the victim to unplug the affected device.

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
http://www.redhat.com/support/errata/RHSA-2008-0275.html	vendor-advisory x_refsource_REDHAT
http://secunia.com/advisories/30294	third-party-advisory x_refsource_SECUNIA
http://marc.info/?l=linux-kernel&m=118873457814808&w=2	mailing-list x_refsource_MLIST
http://marc.info/?l=linux-kernel&m=118880154122548&w=2	mailing-list x_refsource_MLIST
http://rhn.redhat.com/errata/RHSA-2008-0972.html	vendor-advisory x_refsource_REDHAT
http://secunia.com/advisories/28706	third-party-advisory x_refsource_SECUNIA
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.6	x_refsource_CONFIRM
http://secunia.com/advisories/26994	third-party-advisory x_refsource_SECUNIA
http://www.debian.org/security/2008/dsa-1504	vendor-advisory x_refsource_DEBIAN
http://www.mandriva.com/security/advisories?name=MDVSA-2008:008	vendor-advisory x_refsource_MANDRIVA
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10494	vdb-entry signature x_refsource_OVAL
http://www.ubuntu.com/usn/usn-558-1	vendor-advisory x_refsource_UBUNTU
http://www.debian.org/security/2007/dsa-1381	vendor-advisory x_refsource_DEBIAN
http://www.mandriva.com/security/advisories?name=MDVSA-2008:105	vendor-advisory x_refsource_MANDRIVA
http://www.debian.org/security/2008/dsa-1503	vendor-advisory x_refsource_DEBIAN
http://www.ubuntu.com/usn/usn-574-1	vendor-advisory x_refsource_UBUNTU
http://secunia.com/advisories/29058	third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/28971	third-party-advisory x_refsource_SECUNIA
http://www.securityfocus.com/bid/25504	vdb-entry x_refsource_BID
http://secunia.com/advisories/28170	third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/32799	third-party-advisory x_refsource_SECUNIA
http://www.ubuntu.com/usn/usn-578-1	vendor-advisory x_refsource_UBUNTU

Hyperlink: http://www.redhat.com/support/errata/RHSA-2008-0275.html

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: http://secunia.com/advisories/30294

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://marc.info/?l=linux-kernel&m=118873457814808&w=2

Resource:

mailing-list

x_refsource_MLIST

Hyperlink: http://marc.info/?l=linux-kernel&m=118880154122548&w=2

Resource:

mailing-list

x_refsource_MLIST

Hyperlink: http://rhn.redhat.com/errata/RHSA-2008-0972.html

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: http://secunia.com/advisories/28706

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.6

Resource:

x_refsource_CONFIRM

Hyperlink: http://secunia.com/advisories/26994

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.debian.org/security/2008/dsa-1504

Resource:

vendor-advisory

x_refsource_DEBIAN

Hyperlink: http://www.mandriva.com/security/advisories?name=MDVSA-2008:008

Resource:

vendor-advisory

x_refsource_MANDRIVA

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10494

Resource:

vdb-entry

signature

x_refsource_OVAL

Hyperlink: http://www.ubuntu.com/usn/usn-558-1

Resource:

vendor-advisory

x_refsource_UBUNTU

Hyperlink: http://www.debian.org/security/2007/dsa-1381

Resource:

vendor-advisory

x_refsource_DEBIAN

Hyperlink: http://www.mandriva.com/security/advisories?name=MDVSA-2008:105

Resource:

vendor-advisory

x_refsource_MANDRIVA

Hyperlink: http://www.debian.org/security/2008/dsa-1503

Resource:

vendor-advisory

x_refsource_DEBIAN

Hyperlink: http://www.ubuntu.com/usn/usn-574-1

Resource:

vendor-advisory

x_refsource_UBUNTU

Hyperlink: http://secunia.com/advisories/29058

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://secunia.com/advisories/28971

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.securityfocus.com/bid/25504

Resource:

vdb-entry

x_refsource_BID

Hyperlink: http://secunia.com/advisories/28170

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://secunia.com/advisories/32799

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.ubuntu.com/usn/usn-578-1

Resource:

vendor-advisory

x_refsource_UBUNTU

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
http://www.redhat.com/support/errata/RHSA-2008-0275.html	vendor-advisory x_refsource_REDHAT x_transferred
http://secunia.com/advisories/30294	third-party-advisory x_refsource_SECUNIA x_transferred
http://marc.info/?l=linux-kernel&m=118873457814808&w=2	mailing-list x_refsource_MLIST x_transferred
http://marc.info/?l=linux-kernel&m=118880154122548&w=2	mailing-list x_refsource_MLIST x_transferred
http://rhn.redhat.com/errata/RHSA-2008-0972.html	vendor-advisory x_refsource_REDHAT x_transferred
http://secunia.com/advisories/28706	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.6	x_refsource_CONFIRM x_transferred
http://secunia.com/advisories/26994	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.debian.org/security/2008/dsa-1504	vendor-advisory x_refsource_DEBIAN x_transferred
http://www.mandriva.com/security/advisories?name=MDVSA-2008:008	vendor-advisory x_refsource_MANDRIVA x_transferred
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10494	vdb-entry signature x_refsource_OVAL x_transferred
http://www.ubuntu.com/usn/usn-558-1	vendor-advisory x_refsource_UBUNTU x_transferred
http://www.debian.org/security/2007/dsa-1381	vendor-advisory x_refsource_DEBIAN x_transferred
http://www.mandriva.com/security/advisories?name=MDVSA-2008:105	vendor-advisory x_refsource_MANDRIVA x_transferred
http://www.debian.org/security/2008/dsa-1503	vendor-advisory x_refsource_DEBIAN x_transferred
http://www.ubuntu.com/usn/usn-574-1	vendor-advisory x_refsource_UBUNTU x_transferred
http://secunia.com/advisories/29058	third-party-advisory x_refsource_SECUNIA x_transferred
http://secunia.com/advisories/28971	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.securityfocus.com/bid/25504	vdb-entry x_refsource_BID x_transferred
http://secunia.com/advisories/28170	third-party-advisory x_refsource_SECUNIA x_transferred
http://secunia.com/advisories/32799	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.ubuntu.com/usn/usn-578-1	vendor-advisory x_refsource_UBUNTU x_transferred