2 matches found
CVE-2006-2093
Nessus before 2.2.8, and 3.x before 3.0.3, allows user-assisted attackers to cause a denial of service memory consumption via a NASL script that calls split with an invalid sep parameter. NOTE: a design goal of the NASL language is to facilitate sharing of security tests by guaranteeing that a...
CVE-2006-2093
CVE-2006-2093 affects Nessus/NASL through the libnasl library: a NASL script calling split with a zero/invalid separator can trigger excessive memory allocation, enabling user‑assisted denial of service that may crash the Nessus daemon. Public sources in connected documents confirm the issue aris...