Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2006-6318HistoryDec 28, 2006 - 8:28 p.m.
CVE-2006-6318
2006-12-2820:28:00
Debian Security Bug Tracker
security-tracker.debian.org
11
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
The show_elog_list function in elogd.c in elog 2.6.2 and earlier allows remote authenticated users to cause a denial of service (daemon crash) by attempting to access a logbook whose name begins with “global,” which results in a NULL pointer dereference. NOTE: some of these details are obtained from third party information.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 10 | all | elog | < 3.1.3-1-1 | elog_3.1.3-1-1_all.deb |
Related
openvas
openvas
ELOG < 2.6.2-7 DoS Vulnerability
2008-10-24 00:00:00
ELOG Web LogBook global Denial of Service
2008-10-24 00:00:00
Debian Security Advisory DSA 1242-1 (elog)
2008-01-17 00:00:00
nessus
nessus
ELOG Web LogBook global Denial of Service
2006-11-20 00:00:00
Debian DSA-1242-1 : elog - several vulnerabilities
2006-12-30 00:00:00
cve
cve
CVE-2006-6318
2006-12-28 20:28:00
ubuntucve
ubuntucve
CVE-2006-6318
2006-12-28 00:00:00
osv
osv
elog
2006-12-27 00:00:00
debian
debian
[SECURITY] [DSA 1242-1] New elog packages fix arbitrary code execution
2006-12-27 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related for DEBIANCVE:CVE-2006-6318