exploitDog

CVE-2006-6653

Опубликовано: 20 дек. 2006

Источник: nvd

CVSS2: 1.7

EPSS Низкий

Описание

The accept function in NetBSD-current before 20061023, NetBSD 3.0 and 3.0.1 before 20061024, and NetBSD 2.x before 20061029 allows local users to cause a denial of service (socket consumption) via an invalid (1) name or (2) namelen parameter, which may result in the socket never being closed (aka "a dangling socket").

Ссылки

ftp://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA2006-026.txt.asc
Patch
Vendor Advisory
http://securitytracker.com/id?1017293
Patch
ftp://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA2006-026.txt.asc
Patch
Vendor Advisory
http://securitytracker.com/id?1017293
Patch

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:netbsd:netbsd:2.0:*:*:*:*:*:*:*

cpe:2.3:o:netbsd:netbsd:3.0:*:*:*:*:*:*:*

cpe:2.3:o:netbsd:netbsd:3.0.1:*:*:*:*:*:*:*

cpe:2.3:o:netbsd:netbsd:current:*:*:*:*:*:*:*

EPSS

Процентиль: 17%

0.00055

Низкий

1.7 Low

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-889m-6cc9-v7f2

github

почти 4 года назад

The accept function in NetBSD-current before 20061023, NetBSD 3.0 and 3.0.1 before 20061024, and NetBSD 2.x before 20061029 allows local users to cause a denial of service (socket consumption) via an invalid (1) name or (2) namelen parameter, which may result in the socket never being closed (aka "a dangling socket").

EPSS

Процентиль: 17%

0.00055

Низкий

1.7 Low

CVSS2

Дефекты

CWE-20