CVE-2006-0433

EPSS 1.36%
Published 02.02.2006 11:02:00
Last modified 03.04.2025 01:03:51
Source secteam@freebsd.org
Teams watchlist Login
Open Login

Selective Acknowledgement (SACK) in FreeBSD 5.3 and 5.4 does not properly handle an incoming selective acknowledgement when there is insufficient memory, which might allow remote attackers to cause a denial of service (infinite loop).

Affected products Warnungen 0 Metrics 2 CWE 0 References 11

Data is provided by the National Vulnerability Database (NVD)

Freebsd ≫ Freebsd Version5.3

Freebsd ≫ Freebsd Version5.4

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.36%	0.784

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P

ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:08.sack.asc

http://secunia.com/advisories/18696

http://securityreason.com/securityalert/399

http://securitytracker.com/id?1015566

http://www.osvdb.org/22861

Patch

http://www.securityfocus.com/bid/16466

http://www.vupen.com/english/advisories/2006/0409

https://exchange.xforce.ibmcloud.com/vulnerabilities/24453

https://nvd.nist.gov/vuln/detail/CVE-2006-0433

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-0433

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-0433

EUVD