7 High
AI Score
Confidence
High
1.7 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:S/C:N/I:N/A:P
0.0004 Low
EPSS
Percentile
5.3%
The accept function in NetBSD-current before 20061023, NetBSD 3.0 and 3.0.1 before 20061024, and NetBSD 2.x before 20061029 allows local users to cause a denial of service (socket consumption) via an invalid (1) name or (2) namelen parameter, which may result in the socket never being closed (aka “a dangling socket”).
CPE | Name | Operator | Version |
---|---|---|---|
netbsd:netbsd | netbsd | eq | current |
netbsd:netbsd | netbsd | eq | 3.0.1 |
netbsd:netbsd | netbsd | eq | 3.0 |
netbsd:netbsd | netbsd | eq | 2.0 |