Lucene search

[email protected]CVE-2007-1030

HistoryFeb 21, 2007 - 11:28 a.m.

CVE-2007-1030

2007-02-2111:28:00

[email protected]

web.nvd.nist.gov

niels provos

libevent

denial of service

dns response

cve-2007-1030

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.4 Medium

AI Score

Confidence

High

0.047 Low

EPSS

Percentile

92.7%

JSON

Niels Provos libevent 1.2 and 1.2a allows remote attackers to cause a denial of service (infinite loop) via a DNS response containing a label pointer that references its own offset.

Affected configurations

NVD

Node

niels_provoslibeventMatch1.2

niels_provoslibeventMatch1.2a

CPENameOperatorVersion
niels_provos:libeventniels provos libeventeq1.2
niels_provos:libeventniels provos libeventeq1.2a

CPE	Name	Operator	Version
niels_provos:libevent	niels provos libevent	eq	1.2
niels_provos:libevent	niels provos libevent	eq	1.2a

References

monkey.org/~provos/libevent/

osvdb.org/33228

secunia.com/advisories/24181

securityreason.com/securityalert/2268

www.securityfocus.com/archive/1/460530/100/0/threaded

www.securityfocus.com/bid/22606

www.vupen.com/english/advisories/2007/0647

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.4 Medium

AI Score

Confidence

High

0.047 Low

EPSS

Percentile

92.7%

JSON

Related for CVE-2007-1030

debiancve1 prion1 cvelist1 redhatcve1 ubuntucve1 securityvulns1 nvd1 checkpoint_advisories1