PT-2019-6486 · Gnu · Glibc
Published
2019-04-10
·
Updated
2019-04-11
·
CVE-2006-7254
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
glibc versions prior to 2.5
Description
The issue allows local users to carry out a denial of service attack on the nscd daemon in the GNU C Library. This occurs because the daemon does not close incoming client sockets if they cannot be handled.
Recommendations
For versions prior to 2.5, consider disabling the nscd daemon as a temporary workaround to minimize the risk of exploitation.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Glibc