Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1925

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2011-1925
Last Modified 18 Apr 2013 11:13:12
Published 31 May 2011 04:55:04
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-1925

Summary

nbd-server.c in Network Block Device (nbd-server) 2.9.21 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) by causing a negotiation failure, as demonstrated by specifying a name for a non-existent export.

Vulnerable Systems

Application

  • Wouter Verhelst Nbd 2.9.21


References

CONFIRM - http://nbd.git.sourceforge.net/git/gitweb.cgi?p=nbd/nbd;a=commitdiff;h=ebbbe0b3ce5393fa42a259f5e03d549508586aaa

XF - networkblock-negotiation-dos(67502)

BID - 47884

MLIST - [oss-security] 20110517 CVE request: nbd-server

MISC - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=627042.

GENTOO - GLSA-201206-35


Last Updated: 27 May 2016 11:02:17