The modern style negotiation in Network Block Device (nbd-server) 2.9.22 up to and including 3.3 allows remote malicious users to cause a denial of service (root process termination) by (1) closing the connection during negotiation or (2) specifying a name for a non-existent export.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
wouter verhelst nbd 2.9.3 |
||
wouter verhelst nbd 2.9.4 |
||
wouter verhelst nbd 3.1 |
||
wouter verhelst nbd 3.1.1 |
||
wouter verhelst nbd 3.2 |
||
wouter verhelst nbd 2.9.22 |
||
wouter verhelst nbd 2.9.23 |
||
wouter verhelst nbd 2.9.7 |
||
wouter verhelst nbd 2.9.8 |
||
wouter verhelst nbd 2.9.24 |
||
wouter verhelst nbd 2.9.25 |
||
wouter verhelst nbd 2.9.9 |
||
wouter verhelst nbd 3.0 |
||
wouter verhelst nbd 2.9.5 |
||
wouter verhelst nbd 2.9.6 |
||
wouter verhelst nbd 3.3 |