Описание
6tunnel 0.08 and earlier does not properly close sockets that were initiated by a client, which allows remote attackers to cause a denial of service (resource exhaustion) by repeatedly connecting to and disconnecting from the server.
Ссылки
- Broken Link
- ExploitMailing List
- Broken LinkThird Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Broken Link
- ExploitMailing List
- Broken LinkThird Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия до 0.08 (включая)
cpe:2.3:a:6tunnel_project:6tunnel:*:*:*:*:*:*:*:*
EPSS
Процентиль: 92%
0.0896
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-772
Связанные уязвимости
github
почти 4 года назад
6tunnel 0.08 and earlier does not properly close sockets that were initiated by a client, which allows remote attackers to cause a denial of service (resource exhaustion) by repeatedly connecting to and disconnecting from the server.
EPSS
Процентиль: 92%
0.0896
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-772