Lucene search

[email protected]CVE-2006-6654

HistoryOct 03, 2022 - 4:21 p.m.

CVE-2006-6654

2022-10-0316:21:22

[email protected]

web.nvd.nist.gov

netbsd

sendmsg function

denial of service

kernel panic

cve-2006-6654

nvd

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

41.8%

JSON

The sendmsg function in NetBSD-current before 20061023, NetBSD 3.0 and 3.0.1 before 20061024, and NetBSD 2.x before 20061029, when run on a 64-bit architecture, allows attackers to cause a denial of service (kernel panic) via an invalid msg_controllen parameter to the sendit function.

Affected configurations

NVD

Node

netbsdnetbsdMatch2.0

netbsdnetbsdMatch2.1

netbsdnetbsdMatch3.0

netbsdnetbsdMatch3.0.1

CPENameOperatorVersion
netbsd:netbsdnetbsdeq2.0
netbsd:netbsdnetbsdeq2.1
netbsd:netbsdnetbsdeq3.0
netbsd:netbsdnetbsdeq3.0.1

CPE	Name	Operator	Version
netbsd:netbsd	netbsd	eq	2.0
netbsd:netbsd	netbsd	eq	2.1
netbsd:netbsd	netbsd	eq	3.0
netbsd:netbsd	netbsd	eq	3.0.1

References

ftp://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA2006-026.txt.asc

securitytracker.com/id?1017293

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

41.8%

JSON

Related for CVE-2006-6654

nvd1 cvelist1