Vulnerability Details CVE-2006-3118
spread uses a temporary file with a static filename based on the port number, which allows local users to cause a denial of service by creating the file during a race condition between unlink and bind function calls. NOTE: spread deletes this temporary file before use, which could cause conflicts with other programs that use the same filename, but this is not a distinct issue.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 20.6%
CVSS Severity
CVSS v2 Score 1.2
References
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=375617
- http://www.securityfocus.com/bid/18675
- https://launchpad.net/distros/ubuntu/+source/spread/+bug/44171
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=375617
- http://www.securityfocus.com/bid/18675
- https://launchpad.net/distros/ubuntu/+source/spread/+bug/44171