Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2017-17066

The (1) i2pd before 2.17 and (2) kovri pre-alpha implementations of the I2P routing protocol do not properly handle Garlic DeliveryTypeTunnel packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrated by reading sensitive router memory, aka the GarlicRust bug.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 76.4%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
Products affected by CVE-2017-17066
  • Getkovri » Kovri » Version: N/A
    cpe:2.3:a:getkovri:kovri:-
  • I2pd » I2pd » Version: 0.1.0
    cpe:2.3:a:i2pd:i2pd:0.1.0
  • I2pd » I2pd » Version: 0.10.0
    cpe:2.3:a:i2pd:i2pd:0.10.0
  • I2pd » I2pd » Version: 0.2.0
    cpe:2.3:a:i2pd:i2pd:0.2.0
  • I2pd » I2pd » Version: 0.4.0
    cpe:2.3:a:i2pd:i2pd:0.4.0
  • I2pd » I2pd » Version: 0.5.0
    cpe:2.3:a:i2pd:i2pd:0.5.0
  • I2pd » I2pd » Version: 0.6.0
    cpe:2.3:a:i2pd:i2pd:0.6.0
  • I2pd » I2pd » Version: 0.7.0
    cpe:2.3:a:i2pd:i2pd:0.7.0
  • I2pd » I2pd » Version: 0.8.0
    cpe:2.3:a:i2pd:i2pd:0.8.0
  • I2pd » I2pd » Version: 0.9.0
    cpe:2.3:a:i2pd:i2pd:0.9.0
  • I2pd » I2pd » Version: 2.1.0
    cpe:2.3:a:i2pd:i2pd:2.1.0
  • I2pd » I2pd » Version: 2.10.0
    cpe:2.3:a:i2pd:i2pd:2.10.0
  • I2pd » I2pd » Version: 2.10.1
    cpe:2.3:a:i2pd:i2pd:2.10.1
  • I2pd » I2pd » Version: 2.10.2
    cpe:2.3:a:i2pd:i2pd:2.10.2
  • I2pd » I2pd » Version: 2.11.0
    cpe:2.3:a:i2pd:i2pd:2.11.0
  • I2pd » I2pd » Version: 2.12.0
    cpe:2.3:a:i2pd:i2pd:2.12.0
  • I2pd » I2pd » Version: 2.13.0
    cpe:2.3:a:i2pd:i2pd:2.13.0
  • I2pd » I2pd » Version: 2.14.0
    cpe:2.3:a:i2pd:i2pd:2.14.0
  • I2pd » I2pd » Version: 2.15.0
    cpe:2.3:a:i2pd:i2pd:2.15.0
  • I2pd » I2pd » Version: 2.16.0
    cpe:2.3:a:i2pd:i2pd:2.16.0
  • I2pd » I2pd » Version: 2.2.0
    cpe:2.3:a:i2pd:i2pd:2.2.0
  • I2pd » I2pd » Version: 2.3.0
    cpe:2.3:a:i2pd:i2pd:2.3.0
  • I2pd » I2pd » Version: 2.4.0
    cpe:2.3:a:i2pd:i2pd:2.4.0
  • I2pd » I2pd » Version: 2.5.0
    cpe:2.3:a:i2pd:i2pd:2.5.0
  • I2pd » I2pd » Version: 2.5.1
    cpe:2.3:a:i2pd:i2pd:2.5.1
  • I2pd » I2pd » Version: 2.6.0
    cpe:2.3:a:i2pd:i2pd:2.6.0
  • I2pd » I2pd » Version: 2.7.0
    cpe:2.3:a:i2pd:i2pd:2.7.0
  • I2pd » I2pd » Version: 2.8.0
    cpe:2.3:a:i2pd:i2pd:2.8.0
  • I2pd » I2pd » Version: 2.9.0
    cpe:2.3:a:i2pd:i2pd:2.9.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved