5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.042 Low
EPSS
Percentile
92.2%
A logic error in the IP fragment cache functionality in pf in FreeBSD 5.3,
5.4, and 6.0, and OpenBSD, when a ‘scrub fragment crop’ or ‘scrub fragment
drop-ovl’ rule is being used, allows remote attackers to cause a denial of
service (crash) via crafted packets that cause a packet fragment to be
inserted twice.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 6.10 | noarch | kfreebsd-5 | < 5.4-17 | UNKNOWN |
ubuntu | 7.04 | noarch | kfreebsd-5 | < 5.4-17 | UNKNOWN |
ubuntu | 7.10 | noarch | kfreebsd-5 | < 5.4-17 | UNKNOWN |
ubuntu | 8.04 | noarch | kfreebsd-5 | < 5.4-17 | UNKNOWN |
ubuntu | 8.10 | noarch | kfreebsd-5 | < 5.4-17 | UNKNOWN |