5

CVE-2008-5081

The originates_from_local_legacy_unicast_socket function (avahi-core/server.c) in avahi-daemon in Avahi before 0.6.24 allows remote attackers to cause a denial of service (crash) via a crafted mDNS packet with a source port of 0, which triggers an assertion failure.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AvahiAvahi Version <= 0.6.23
AvahiAvahi Version0.1
AvahiAvahi Version0.2
AvahiAvahi Version0.3
AvahiAvahi Version0.4
AvahiAvahi Version0.5
AvahiAvahi Version0.5.1
AvahiAvahi Version0.5.2
AvahiAvahi Version0.6.1
AvahiAvahi Version0.6.2
AvahiAvahi Version0.6.3
AvahiAvahi Version0.6.4
AvahiAvahi Version0.6.5
AvahiAvahi Version0.6.6
AvahiAvahi Version0.6.7
AvahiAvahi Version0.6.8
AvahiAvahi Version0.6.9
AvahiAvahi Version0.6.10
AvahiAvahi Version0.6.11
AvahiAvahi Version0.6.12
AvahiAvahi Version0.6.13
AvahiAvahi Version0.6.14
AvahiAvahi Version0.6.15
AvahiAvahi Version0.6.16
AvahiAvahi Version0.6.17
AvahiAvahi Version0.6.18
AvahiAvahi Version0.6.19
AvahiAvahi Version0.6.20
AvahiAvahi Version0.6.21
AvahiAvahi Version0.6.22
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 59.22% 0.99
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/33220
http://secunia.com/advisories/33279
http://www.debian.org/security/2008/dsa-1690
http://www.ubuntu.com/usn/usn-696-1
http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00000.html
http://avahi.org/milestone/Avahi%200.6.24
http://secunia.com/advisories/33153
http://secunia.com/advisories/33475
http://security.gentoo.org/glsa/glsa-200901-11.xml
http://www.openwall.com/lists/oss-security/2008/12/14/1
http://www.securityfocus.com/bid/32825
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9987
https://www.exploit-db.com/exploits/7520