CVE-2016-5009

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Ceph (affected versions not specified)

Description The issue allows remote authenticated users to cause a denial of service, resulting in a segmentation fault and ceph monitor crash. This can be achieved by sending an empty or crafted prefix to the handle command function in mon/Monitor.cc.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

ALT-PU-2016-1629

CVE-2016-5009

RHSA-2016:1384

SUSE-SU-2016:2809-1

SUSE-SU-2017:0367-1

SUSE-SU-2017_0367-1

USN-3452-1

Affected Products

Alt Linux

Ceph

Suse

Ubuntu

CVE-2016-5009

Weakness Enumeration

Related Identifiers

Affected Products

References · 37