CVE-2006-2971

Name of the Vulnerable Software and Affected Versions 0verkill version 0.16

Description The issue is caused by an integer overflow in the recv packet function, allowing remote attackers to cause a denial of service (daemon crash) by sending a UDP packet with fewer than 12 bytes. This results in a long length value being passed to the crc32 function.

Recommendations For 0verkill version 0.16, consider disabling the recv packet function or restricting the handling of UDP packets until a patch is available to prevent the denial of service.