Denial Of Service (DoS)

2020-04-1001:10:28

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

JSON

glibc is vulnerable to denial of service. A denial of service flaw was found in the remote procedure call (RPC) implementation in glibc. A remote attacker able to open a large number of connections to an RPC service that is using the RPC implementation from glibc, could use this flaw to make that service use an excessive amount of CPU time.

CPENameOperatorVersion
glibceq2.5__58.el5_6.2
glibceq2.5__42.el5_4.3
glibceq2.5__49.el5_5.7
glibceq2.12__1.7.el6_0.5
glibceq2.5__18.el5_1.1
glibceq2.5__24.el5_2.2
glibceq2.5__49.el5_5.6
glibceq2.12__1.25.el6_1.3
glibceq2.5__49.el5_5.4
glibceq2.5__49.el5_5.5

Name	Operator	Version
glibc	eq	2.5__58.el5_6.2
glibc	eq	2.5__42.el5_4.3
glibc	eq	2.5__49.el5_5.7
glibc	eq	2.12__1.7.el6_0.5
glibc	eq	2.5__18.el5_1.1
glibc	eq	2.5__24.el5_2.2
glibc	eq	2.5__49.el5_5.6
glibc	eq	2.12__1.25.el6_1.3
glibc	eq	2.5__49.el5_5.4
glibc	eq	2.5__49.el5_5.5