Vulnerability in N/a
CVE-2008-0177
The ipcomp6_input function in sys/netinet6/ipcomp_input.c in the KAME project before 20071201 does not properly check the return value of the m_pulldown function, which allows remote attackers to cause a denial of service (system crash) vi…
EPSS: 0.545 (98.1th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- 28816 (x_refsource_SECUNIA, third-party-advisory)
- ADV-2008-0688 (vdb-entry, x_refsource_VUPEN)
- ADV-2008-0441 (vdb-entry, x_refsource_VUPEN)
- cvsweb.netbsd.org/bsdweb.cgi/src/sys/netinet6/ipcomp_input.c (x_refsource_CONFIRM)
- 27642 (vdb-entry, x_refsource_BID)
- 28788 (x_refsource_SECUNIA, third-party-advisory)
- FreeBSD-SA-08:04 (x_refsource_FREEBSD, vendor-advisory)
- TA08-150A (x_refsource_CERT, third-party-advisory)
- 29130 (x_refsource_SECUNIA, third-party-advisory)
- 28979 (x_refsource_SECUNIA, third-party-advisory)