PT-2008-1823 · Kame · Kame Project

Mu-B

Published

2008-02-07

Updated

2017-09-29

CVE-2008-0177

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions KAME project versions prior to 20071201

Description The issue is related to the ipcomp6 input function in the KAME project, which does not properly check the return value of the m pulldown function. This allows remote attackers to cause a denial of service, resulting in a system crash, via an IPv6 packet with an IPComp header.

Recommendations For versions prior to 20071201, update to a version released after 20071201 to resolve the issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2008-0177

Affected Products

Kame Project

PT-2008-1823 · Kame · Kame Project

CVE-2008-0177

Related Identifiers

Affected Products

References · 22