[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

256288

 
 

909

 
 

199146

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2004-0257Date: (C)2004-11-23   (M)2023-12-22


OpenBSD 3.4 and NetBSD 1.6 and 1.6.1 allow remote attackers to cause a denial of service (crash) by sending an IPv6 packet with a small MTU to a listening port and then issuing a TCP connect to that port.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 5.0
Exploit Score: 10.0
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL
  
Reference:
http://lists.grok.org.uk/pipermail/full-disclosure/2004-February/016704.html
http://marc.info/?l=bugtraq&m=107604603226564&w=2
OSVDB-3825
BID-9577
NetBSD-SA2004-002
http://www.guninski.com/obsdmtu.html
http://www.openbsd.org/cgi-bin/cvsweb/src/sys/netinet6/ip6_output.c
openbsd-ipv6-dos(15044)

CPE    7
cpe:/o:openbsd:openbsd:3.2
cpe:/o:openbsd:openbsd:3.1
cpe:/o:openbsd:openbsd:3.4
cpe:/o:openbsd:openbsd:3.3
...

© SecPod Technologies