Lucene search

[email protected]CVE-2010-2244

HistoryJul 08, 2010 - 12:54 p.m.

CVE-2010-2244

2010-07-0812:54:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2010-2244

avahi

dns

denial of service

vulnerability

7.3 High

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.032 Low

EPSS

Percentile

91.1%

JSON

The AvahiDnsPacket function in avahi-core/socket.c in avahi-daemon in Avahi 0.6.16 and 0.6.25 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a DNS packet with an invalid checksum followed by a DNS packet with a valid checksum, a different vulnerability than CVE-2008-5081.

CPENameOperatorVersion
avahi:avahiavahieq0.6.25
avahi:avahiavahieq0.6.16

CPE	Name	Operator	Version
avahi:avahi	avahi	eq	0.6.25
avahi:avahi	avahi	eq	0.6.16

References

lists.fedoraproject.org/pipermail/package-announce/2010-July/043800.html

lists.fedoraproject.org/pipermail/package-announce/2010-July/043820.html

marc.info/?l=oss-security&m=127748459505200&w=2

www.debian.org/security/2010/dsa-2086

www.mandriva.com/security/advisories?name=MDVSA-2010:204

www.openwall.com/lists/oss-security/2010/06/23/4

www.securitytracker.com/id?1024200

bugzilla.redhat.com/show_bug.cgi?id=607293

7.3 High

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.032 Low

EPSS

Percentile

91.1%

JSON

Related for CVE-2010-2244

debiancve3 openvas57 nessus29 prion3 ubuntucve3 veracode1 seebug3 fedora5 freebsd1 securityvulns5 gentoo2 redhat3 osv2 oraclelinux2 debian2 cve2 ubuntu2 centos2 exploitpack1 exploitdb1