exploitDog

CVE-2006-3202

Опубликовано: 23 июн. 2006

Источник: nvd

CVSS2: 4.9

EPSS Низкий

Описание

The ip6_savecontrol function in NetBSD 2.0 through 3.0, under certain configurations, does not check to see if IPv4-mapped sockets are being used before processing IPv6 socket options, which allows local users to cause a denial of service (crash) by creating an IPv4-mapped IPv6 socket with the SO_TIMESTAMP socket option set, then sending an IPv4 packet through the socket.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:netbsd:netbsd:2.0:*:*:*:*:*:*:*

cpe:2.3:o:netbsd:netbsd:2.0.2:*:*:*:*:*:*:*

cpe:2.3:o:netbsd:netbsd:2.0.3:*:*:*:*:*:*:*

cpe:2.3:o:netbsd:netbsd:2.1:*:*:*:*:*:*:*

cpe:2.3:o:netbsd:netbsd:3.0:*:*:*:*:*:*:*

EPSS

Процентиль: 18%

0.00056

Низкий

4.9 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-vj6j-x8fq-xj4j

github

почти 4 года назад

The ip6_savecontrol function in NetBSD 2.0 through 3.0, under certain configurations, does not check to see if IPv4-mapped sockets are being used before processing IPv6 socket options, which allows local users to cause a denial of service (crash) by creating an IPv4-mapped IPv6 socket with the SO_TIMESTAMP socket option set, then sending an IPv4 packet through the socket.

EPSS

Процентиль: 18%

0.00056

Низкий

4.9 Medium

CVSS2

Дефекты

NVD-CWE-Other