Published: 14/10/2010 Updated: 27/01/2012

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

bip prior to 0.8.6 allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) via an empty USER command.

Vulnerable Product	Search on Vulmon	Subscribe to Product
duckcorp bip 0.8.1
duckcorp bip 0.8.2
duckcorp bip 0.8.3
duckcorp bip 0.8.4
duckcorp bip 0.8.0
duckcorp bip 0.7.4
duckcorp bip
duckcorp bip 0.7.3
duckcorp bip 0.7.2
duckcorp bip 0.7.1
duckcorp bip 0.7.0
duckcorp bip 0.7.5

Debian Bug report logs - #595409 bip can be crashed remotely by unauthenticated users Package: bip; Maintainer for bip is Pierre-Louis Bonicoli <pierre-louisbonicoli@gmxfr>; Source for bip is src:bip (PTS, buildd, popcon) Reported by: Uli Schlachter <psychon@zncin> Date: Fri, 3 Sep 2010 18:24:01 UTC Severity: gr ...

NVD-CWE-Other http://bip.t1r.net/http://www.openwall.com/lists/oss-security/2010/09/05/1 http://www.openwall.com/lists/oss-security/2010/09/07/6 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=595409 https://bugzilla.redhat.com/show_bug.cgi?id=630437 http://www.securityfocus.com/bid/42995 http://secunia.com/advisories/42889 http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052992.html http://www.vupen.com/english/advisories/2011/0096 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=595409 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2010-3071

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect