Vulnerability Details CVE-2006-2413
GNUnet before SVN revision 2781 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via an empty UDP datagram, possibly involving FIONREAD errors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.131
EPSS Ranking 93.8%
CVSS Severity
CVSS v2 Score 5.0
References
- http://aluigi.altervista.org/adv/gnunetzero-adv.txt
- http://secunia.com/advisories/20096
- http://securityreason.com/securityalert/907
- http://www.securityfocus.com/archive/1/433933/100/0/threaded
- http://www.securityfocus.com/bid/17980
- http://www.vupen.com/english/advisories/2006/1799
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26527
- https://gnunet.org/svn/GNUnet/ChangeLog
- http://aluigi.altervista.org/adv/gnunetzero-adv.txt
- http://secunia.com/advisories/20096
- http://securityreason.com/securityalert/907
- http://www.securityfocus.com/archive/1/433933/100/0/threaded
- http://www.securityfocus.com/bid/17980
- http://www.vupen.com/english/advisories/2006/1799
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26527
- https://gnunet.org/svn/GNUnet/ChangeLog
Products affected by CVE-2006-2413
-
cpe:2.3:a:gnunet:gnunet:*
-
cpe:2.3:a:gnunet:gnunet:0.7.0
-
cpe:2.3:a:gnunet:gnunet:0.7.0a
-
cpe:2.3:a:gnunet:gnunet:0.7.0b
-
cpe:2.3:a:gnunet:gnunet:0.7.0c