5

CVE-2014-3955

routed in FreeBSD 8.4 through 10.1-RC2 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via an RIP request from a source not on a directly connected network.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
FreebsdFreebsd Version8.4
FreebsdFreebsd Version9.0
FreebsdFreebsd Version9.0 Updatebeta1
FreebsdFreebsd Version9.0 Updatebeta2
FreebsdFreebsd Version9.0 Updatebeta3
FreebsdFreebsd Version9.1
FreebsdFreebsd Version9.1 Updatep4
FreebsdFreebsd Version9.1 Updatep5
FreebsdFreebsd Version9.2 Update-
FreebsdFreebsd Version9.2 Updateprerelease
FreebsdFreebsd Version9.2 Updaterc1
FreebsdFreebsd Version9.2 Updaterc2
FreebsdFreebsd Version9.3
FreebsdFreebsd Version9.3 Updaterc1
FreebsdFreebsd Version9.3 Updaterc2
FreebsdFreebsd Version10.0
FreebsdFreebsd Version10.0 Updaterc1
FreebsdFreebsd Version10.0 Updaterc2
FreebsdFreebsd Version10.1
FreebsdFreebsd Version10.1 Updaterc1
FreebsdFreebsd Version10.1 Updaterc2
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.54% 0.647
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.