CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-5471

libgssapi before 0.6-13.7, as used by the ISC BIND named daemon in SUSE Linux Enterprise Server 10 SP 1, terminates upon an initialization error, which allows remote attackers to cause a denial of service (daemon exit) via a GSS-TSIG request. NOTE: this issue probably affects other daemons that attempt to initialize this library within a chroot configuration or other invalid configuration.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 73.2%

CVSS Severity

CVSS v2 Score 7.8

References

http://osvdb.org/40935
http://secunia.com/advisories/27189
http://www.securityfocus.com/bid/26076
https://exchange.xforce.ibmcloud.com/vulnerabilities/37233
https://secure-support.novell.com/KanisaPlatform/Publishing/936/3665923_f.SAL_Public.html
http://osvdb.org/40935
http://secunia.com/advisories/27189
http://www.securityfocus.com/bid/26076
https://exchange.xforce.ibmcloud.com/vulnerabilities/37233
https://secure-support.novell.com/KanisaPlatform/Publishing/936/3665923_f.SAL_Public.html

Products affected by CVE-2007-5471

Suse » Suse Linux » Version: 10

cpe:2.3:o:suse:suse_linux:10

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-5471

Products

Pricing

Contact Us