5

CVE-2006-6870

The consume_labels function in avahi-core/dns.c in Avahi before 0.6.16 allows remote attackers to cause a denial of service (infinite loop) via a crafted compressed DNS response with a label that points to itself.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AvahiAvahi Version0.6.7
AvahiAvahi Version0.6.8
AvahiAvahi Version0.6.9
AvahiAvahi Version0.6.10
AvahiAvahi Version0.6.11
AvahiAvahi Version0.6.12
AvahiAvahi Version0.6.13
AvahiAvahi Version0.6.14
AvahiAvahi Version0.6.15
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.3% 0.81
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/24995
http://www.novell.com/linux/security/advisories/2007_007_suse.html
http://fedoranews.org/cms/node/2362
http://fedoranews.org/cms/node/2408
http://secunia.com/advisories/23628
http://secunia.com/advisories/23644
http://secunia.com/advisories/23660
http://secunia.com/advisories/23673
http://secunia.com/advisories/23782
http://www.avahi.org/#December2006
Patch
http://www.avahi.org/changeset/1340
http://www.avahi.org/ticket/84
Patch
http://www.mandriva.com/security/advisories?name=MDKSA-2007:003
http://www.securityfocus.com/bid/21881
http://www.ubuntu.com/usn/usn-402-1
http://www.vupen.com/english/advisories/2007/0071