Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1408

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2006-1408
Last Modified 07 Mar 2011 09:33:02
Published 28 Mar 2006 06:06:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-1408

Summary

Vavoom 1.19.1 and earlier allows remote attackers to cause a denial of service (infinite loop) via (1) a packet with no data or (2) a large packet, which prevents Vavoom from discarding the packet from the socket.

Vulnerable Systems

Application

  • Vavoom 1.1

  • Vavoom 1.10

  • Vavoom 1.11

  • Vavoom 1.11.1

  • Vavoom 1.11.2

  • Vavoom 1.12

  • Vavoom 1.14

  • Vavoom 1.15

  • Vavoom 1.15 Beta 1

  • Vavoom 1.15.1

  • Vavoom 1.15.2

  • Vavoom 1.15.3

  • Vavoom 1.16

  • Vavoom 1.16.1

  • Vavoom 1.17

  • Vavoom 1.18

  • Vavoom 1.19

  • Vavoom 1.19.1

  • Vavoom 1.2

  • Vavoom 1.3

  • Vavoom 1.4

  • Vavoom 1.4 Beta

  • Vavoom 1.5

  • Vavoom 1.5 Beta

  • Vavoom 1.5.1

  • Vavoom 1.6

  • Vavoom 1.666

  • Vavoom 1.666 Beta 1

  • Vavoom 1.666 Beta 2

  • Vavoom 1.7

  • Vavoom 1.7 Beta 1

  • Vavoom 1.7 Beta 2

  • Vavoom 1.7 Beta 3

  • Vavoom 1.7 Beta 4

  • Vavoom 1.7 Beta 5

  • Vavoom 1.8

  • Vavoom 1.9


References

VUPEN - ADV-2006-1104

BID - 17261

SECUNIA - 19388

MISC - http://aluigi.altervista.org/adv/vaboom-adv.txt

XF - vavoom-fionread-dos(25454)


Last Updated: 27 May 2016 10:42:02