CVE-2006-2072
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
27/04/2006
Last modified:
20/07/2017
Description
Multiple unspecified vulnerabilities in DeleGate 9.x before 9.0.6 and 8.x before 8.11.6 allow remote attackers to cause a denial of service via crafted DNS responses messages that cause (1) a buffer over-read or (2) infinite recursion, which can trigger a segmentation fault or invalid memory access, as demonstrated by the OUSPG PROTOS DNS test suite.
Impact
Base Score 2.0
5.00
Severity 2.0
MEDIUM
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:delegate:delegate:7.7.0:*:*:*:*:*:*:* | ||
cpe:2.3:a:delegate:delegate:7.7.1:*:*:*:*:*:*:* | ||
cpe:2.3:a:delegate:delegate:7.8.0:*:*:*:*:*:*:* | ||
cpe:2.3:a:delegate:delegate:7.8.1:*:*:*:*:*:*:* | ||
cpe:2.3:a:delegate:delegate:7.8.2:*:*:*:*:*:*:* | ||
cpe:2.3:a:delegate:delegate:7.9.11:*:*:*:*:*:*:* | ||
cpe:2.3:a:delegate:delegate:8.3.3:*:*:*:*:*:*:* | ||
cpe:2.3:a:delegate:delegate:8.3.4:*:*:*:*:*:*:* | ||
cpe:2.3:a:delegate:delegate:8.4.0:*:*:*:*:*:*:* | ||
cpe:2.3:a:delegate:delegate:8.5.0:*:*:*:*:*:*:* | ||
cpe:2.3:a:delegate:delegate:8.9:*:*:*:*:*:*:* | ||
cpe:2.3:a:delegate:delegate:8.9.1:*:*:*:*:*:*:* | ||
cpe:2.3:a:delegate:delegate:8.9.2:*:*:*:*:*:*:* | ||
cpe:2.3:a:delegate:delegate:8.9.3:*:*:*:*:*:*:* | ||
cpe:2.3:a:delegate:delegate:8.9.4:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://secunia.com/advisories/19750
- http://securitytracker.com/id?1015991=
- http://www.kb.cert.org/vuls/id/955777
- http://www.niscc.gov.uk/niscc/docs/br-20060425-00311.html?lang=en
- http://www.niscc.gov.uk/niscc/docs/re-20060425-00312.pdf?lang=en
- http://www.securityfocus.com/bid/17691
- http://www.vupen.com/english/advisories/2006/1505
- http://www.vupen.com/english/advisories/2006/1506
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26081