Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2010-3071

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2010-3071
Last Modified 27 Jan 2012 12:43:00
Published 14 Oct 2010 01:57:57
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2010-3071

Summary

bip before 0.8.6 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an empty USER command.

Vulnerable Systems

Application

  • Bip.t1r Bip 0.8.0

  • Bip.t1r Bip 0.8.1

  • Bip.t1r Bip 0.8.2

  • Bip.t1r Bip 0.8.3

  • Bip.t1r Bip 0.8.4

  • Bip.t1r Bip 0.8.5

  • Duckcorp Bip 0.7.0

  • Duckcorp Bip 0.7.1

  • Duckcorp Bip 0.7.2

  • Duckcorp Bip 0.7.3

  • Duckcorp Bip 0.7.4

  • Duckcorp Bip 0.7.5

  • Duckcorp Bip 0.8.0

  • Duckcorp Bip 0.8.1

  • Duckcorp Bip 0.8.2

  • Duckcorp Bip 0.8.3

  • Duckcorp Bip 0.8.4

  • Duckcorp Bip 0.8.5


References

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=630437

VUPEN - ADV-2011-0096

BID - 42995

MLIST - [oss-security] 20100907 Re: CVE Request -- Bip -- Remote Dos (crash) by exchanging user credentials

MLIST - [oss-security] 20100905 CVE Request -- Bip -- Remote Dos (crash) by exchanging user credentials

SECUNIA - 42889

FEDORA - FEDORA-2010-15774

CONFIRM - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=595409

CONFIRM - http://bip.t1r.net/


Last Updated: 27 May 2016 10:58:07