Buffer overflow in Litech Router_advertisement_daemon

CVE-2011-3604

The process_ra function in the router advertisement daemon (radvd) before 1.8.2 allows remote attackers to cause a denial of service (stack-based buffer over-read and crash) via unspecified vectors.

Vulnerability class: Buffer Overflow

EPSS: 0.005 (66.3th percentile) — read the EPSS interpretation.

Affected products

Litech Router_advertisement_daemon
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

[oss-security] 20111007 radvd 1.8.2 released with security fixes (mailing-list, x_refsource_MLIST)
DSA-2323 (vendor-advisory, x_refsource_DEBIAN)
secalert@redhat.com (x_refsource_CONFIRM)
USN-1257-1 (x_refsource_UBUNTU, vendor-advisory)