CVE-2007-5093

N/A Unknown

Published: September 26, 2007 Modified: April 23, 2026

Description

The disconnect method in the Philips USB Webcam (pwc) driver in Linux kernel 2.6.x before 2.6.22.6 "relies on user space to close the device," which allows user-assisted local attackers to cause a denial of service (USB subsystem hang and CPU consumption in khubd) by not closing the device after the disconnect is invoked. NOTE: this rarely crosses privilege boundaries, unless the attacker can convince the victim to unplug the affected device.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://marc.info/?l=linux-kernel&m=118873457814808&w=2

Source: secalert@redhat.com

http://marc.info/?l=linux-kernel&m=118880154122548&w=2

Source: secalert@redhat.com

http://rhn.redhat.com/errata/RHSA-2008-0972.html

Source: secalert@redhat.com

http://secunia.com/advisories/26994

Source: secalert@redhat.com

http://secunia.com/advisories/28170

Source: secalert@redhat.com

http://secunia.com/advisories/28706

Source: secalert@redhat.com

http://secunia.com/advisories/28971

Source: secalert@redhat.com

http://secunia.com/advisories/29058

Source: secalert@redhat.com

http://secunia.com/advisories/30294

Source: secalert@redhat.com

http://secunia.com/advisories/32799

Source: secalert@redhat.com

http://www.debian.org/security/2007/dsa-1381

Source: secalert@redhat.com

http://www.debian.org/security/2008/dsa-1503

Source: secalert@redhat.com

http://www.debian.org/security/2008/dsa-1504

Source: secalert@redhat.com

http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.6

Source: secalert@redhat.com

http://www.mandriva.com/security/advisories?name=MDVSA-2008:008

Source: secalert@redhat.com

http://www.mandriva.com/security/advisories?name=MDVSA-2008:105

Source: secalert@redhat.com

http://www.redhat.com/support/errata/RHSA-2008-0275.html

Source: secalert@redhat.com

http://www.securityfocus.com/bid/25504

Source: secalert@redhat.com

http://www.ubuntu.com/usn/usn-558-1

Source: secalert@redhat.com

http://www.ubuntu.com/usn/usn-574-1

Source: secalert@redhat.com

http://www.ubuntu.com/usn/usn-578-1

Source: secalert@redhat.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10494

Source: secalert@redhat.com

http://marc.info/?l=linux-kernel&m=118873457814808&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=linux-kernel&m=118880154122548&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://rhn.redhat.com/errata/RHSA-2008-0972.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/26994

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/28170

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/28706

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/28971

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/29058

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/30294

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/32799

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2007/dsa-1381

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2008/dsa-1503

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2008/dsa-1504

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.6

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mandriva.com/security/advisories?name=MDVSA-2008:008

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mandriva.com/security/advisories?name=MDVSA-2008:105

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2008-0275.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/25504

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/usn-558-1

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/usn-574-1

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/usn-578-1

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10494

Source: af854a3a-2127-422b-91ae-364da2661108

44 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

0.3%

27th percentile

Exploitation Status

Not in CISA KEV

Weaknesses (CWE)

CWE-399

Affected Vendors

linux

Related CVEs

CVE-2026-40941 N/A

CVE-2026-40084 6.5

CVE-2026-40083 7.2

CVE-2026-40082 5.4

CVE-2026-40080 6.1