6 matches found
Design/Logic Flaw
The ipcomp6input function in sys/netinet6/ipcompinput.c in the KAME project before 20071201 does not properly check the return value of the mpulldown function, which allows remote attackers to cause a denial of service system crash via an IPv6 packet with an IPComp header...
CVE-2008-0177
The ipcomp6input function in sys/netinet6/ipcompinput.c in the KAME project before 20071201 does not properly check the return value of the mpulldown function, which allows remote attackers to cause a denial of service system crash via an IPv6 packet with an IPComp header...
CVE-2008-0177
The ipcomp6input function in sys/netinet6/ipcompinput.c in the KAME project before 20071201 does not properly check the return value of the mpulldown function, which allows remote attackers to cause a denial of service system crash via an IPv6 packet with an IPComp header...
CVE-2008-0177
CVE-2008-0177 arises from an unchecked return value in ipcomp6_input (sys/netinet6/ipcomp_input.c) in the KAME project, where m_pulldown is not verified before use. This allows remote attackers to trigger a denial of service (system crash) by sending an IPv6 packet containing an IPComp header. Th...
CVE-2008-0177
The ipcomp6input function in sys/netinet6/ipcompinput.c in the KAME project before 20071201 does not properly check the return value of the mpulldown function, which allows remote attackers to cause a denial of service system crash via an IPv6 packet with an IPComp header...
KAME project IPv6 IPComp header denial of service vulnerability
Overview The KAME project's IPv6 implementation does not properly process IPv6 packets that contain the IPComp header. If exploited, this vulnerability may allow an attacker to cause a vulnerable system to crash. Description Per RFC 3173:IP payload compression is a protocol to reduce the size of ...