Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5029


Vulnerability Score 5.0 5.0
CVE Id CVE-2007-5029
Last Modified 15 Nov 2008 01:59:27
Published 21 Sep 2007 03:17:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



Dibbler 0.6.0 does not verify that certain length parameters are appropriate for buffer sizes, which allows remote attackers to trigger a buffer over-read and cause a denial of service (daemon crash), as demonstrated by incorrect behavior of the TSrvMsg constructor in SrvMessages/SrvMsg.cpp when (1) reading the option code and option length and (2) parsing options.

Vulnerable Systems


  • Dibbler 0.6.0


BID - 25726

SECUNIA - 26876


OSVDB - 40569

FULLDISC - 20070918 [MU-200709-02] Dibbler Remote Denial of Service Vulnerability

XF - dibbler-invalidoption-dos(36685)

Last Updated: 27 May 2016 10:46:02