Lucene search

[email protected]CVE-2006-6011

HistoryNov 21, 2006 - 11:07 p.m.

CVE-2006-6011

2006-11-2123:07:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

sap

web application server

cve-2006-6011

denial of service

security vulnerability

6.9 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.003 Low

EPSS

Percentile

70.1%

JSON

Unspecified vulnerability in SAP Web Application Server before 6.40 patch 6 allows remote attackers to cause a denial of service (enserver.exe crash) via a certain UDP packet to port 64999, aka “two bytes UDP crash,” a different vulnerability than CVE-2006-5785.

CPENameOperatorVersion
sap:sap_web_application_serversap sap web application servereq6.40

CPE	Name	Operator	Version
sap:sap_web_application_server	sap sap web application server	eq	6.40

References

securityreason.com/securityalert/1889

www.securityfocus.com/archive/1/451378/100/0/threaded

6.9 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.003 Low

EPSS

Percentile

70.1%

JSON

Related for CVE-2006-6011

cve1