Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3118

Overview

Vulnerability Score 1.2 1.2
CVE Id CVE-2006-3118
Last Modified 05 Sep 2008 05:06:17
Published 30 Jun 2006 03:05:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity HIGH
Authentication NONE

CVE-2006-3118

Summary

spread uses a temporary file with a static filename based on the port number, which allows local users to cause a denial of service by creating the file during a race condition between unlink and bind function calls. NOTE: spread deletes this temporary file before use, which could cause conflicts with other programs that use the same filename, but this is not a distinct issue.

Vulnerable Systems

Application

  • Canonical Spread


References

MISC - https://launchpad.net/distros/ubuntu/+source/spread/+bug/44171

CONFIRM - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=375617

BID - 18675


Last Updated: 27 May 2016 10:42:54