CVE-2011-1002

Published Feb 22, 2011
Last updated 3 months ago
CVSS info 5.0
Overview

Description: avahi-core/socket.c in avahi-daemon in Avahi before 0.6.29 allows remote attackers to cause a denial of service (infinite loop) via an empty mDNS (1) IPv4 or (2) IPv6 UDP packet to port 5353. NOTE: this vulnerability exists because of an incorrect fix for CVE-2010-2244.
Source: secalert@redhat.com
NVD status: Modified
Risk scores

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:P
Weaknesses

nvd@nist.gov: CWE-835
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:avahi:avahi:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "95B53C03-9556-4464-96C9-BF5B0CA9C88B",
            "versionEndIncluding": "0.6.28"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EB4B0D9D-FEBD-4C27-8208-CCB5BA5975AE"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EA69351E-9DB3-4F0E-AE4D-C5448BD0D99B"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "236CE850-B281-428F-8E2D-E0CC649C79FF"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1C1BDC60-035E-4F42-8FE2-1B1E22DC64B9"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FC11CFE6-B57C-484C-8F10-9F68FED7B467"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9CC276CA-DC35-4955-82C6-EC0059970195"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7D330EA3-8EB9-4498-B6AD-787FF14ACE39"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3AACF748-AF75-46B3-BCF7-5E51FE51AB5C"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2D210D68-75A5-4518-B012-23474DA04E04"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FB8A5591-6D72-4E74-A187-936A900CB1F5"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B839D606-3383-4887-862A-3E72F134352F"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D78AC30C-D5F7-4142-B4F2-1132BF0D1000"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5FBA6408-1181-44DA-9C75-734AD745780C"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7C0D4625-24B2-4BF7-B32B-7BCC12C8BD1E"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8266D64B-B067-413E-BDA7-4AB770D4F570"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F99BF964-2FC8-45B5-AD69-4790179B8AF5"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9CA79F96-1C98-49BE-8197-D52B8B6DEF24"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6FF6E882-B66D-4B84-AFE7-D96B1B43E65D"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AC5A8266-1859-45EB-9F16-BF0A5DE1A651"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DC2000C5-238B-43EF-B374-E7505CC61B29"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9BAC2B1B-C800-410D-8484-569675FFD484"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BD6F264D-6E78-4E57-96F7-C8B86BDFBD95"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.16:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2A18985C-8EBB-43A0-BCFC-5CF08DF9D3A4"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.17:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "26E4AECD-B872-46D5-AAA0-280CC32E2F64"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.18:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "563F6941-3A7E-4C44-BAC8-C19BDED9BDF6"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.19:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "12B07E9A-345B-4E14-9D0D-5CAB84761D93"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.20:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5A187641-2E8C-4B40-B861-E49294F3E39F"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.21:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C6FE243E-6E65-4726-832D-0585FE31A182"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.22:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "735FEE37-3948-46DD-A56F-42078EF31345"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.23:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9658080D-9785-4FB2-90A5-46F5A42923EF"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.24:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E6EBAEB0-523C-4722-9E22-6A607641F919"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.25:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BCABA66C-DFA0-4760-9176-F2D693381620"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.26:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EE1D288C-8288-4BA8-A2C4-829A5891EF3B"
          },
          {
            "criteria": "cpe:2.3:a:avahi:avahi:0.6.27:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "18AA4A79-C9C6-4D39-978E-0F55152AAC53"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9396E005-22D8-4342-9323-C7DEA379191D"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1D8B549B-E57B-4DFE-8A13-CAB06B5356B3"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C91D2DBF-6DA7-4BA2-9F29-8BD2725A4701"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A2BCB73E-27BB-4878-AD9C-90C4F20C25A0"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5D37DF0F-F863-45AC-853A-3E04F9FEC7CA"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "87614B58-24AB-49FB-9C84-E8DDBA16353B"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C757774-08E7-40AA-B532-6F705C8F7639"
          },
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "036E8A89-7A16-411F-9D31-676313BB7244"
          },
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "16F59A04-14CF-49E2-9973-645477EA09DA"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References
