Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2016-3706

Published: 10/06/2016 Updated: 12/02/2023
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 446
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Opensuse

Vulnerability Summary

Stack-based buffer overflow in the getaddrinfo function in sysdeps/posix/getaddrinfo.c in the GNU C Library (aka glibc or libc6) allows remote malicious users to cause a denial of service (crash) via vectors involving hostent conversion. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-4458.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

opensuse opensuse 13.2

gnu glibc

Vendor Advisories

Ubuntu Security Notice: eglibc regression
USN-3239-1 introduced a regression in the GNU C Library ...
Ubuntu Security Notice: eglibc, glibc vulnerabilities
Several security issues were fixed in the GNU C Library ...
Ubuntu Security Notice: eglibc, glibc regression
USN-3239-1 introduced a regression in the GNU C Library ...
Red Hat: CVE-2016-3706
Stack-based buffer overflow in the getaddrinfo function in sysdeps/posix/getaddrinfoc in the GNU C Library (aka glibc or libc6) allows remote attackers to cause a denial of service (crash) via vectors involving hostent conversion NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-4458 ...

Github Repositories

https://github.com/harshitha-akkaraju/Notebook

Notebook Based on NextJS 7 This provides the build infrastructure and structure necessary to make any kind of React application, with or without an internal API Testing with Jest/Enzyme and Bundle Analysis comes built-in The server includes a lightweight API controller connected to the RedHat Security Data API You can easily add your own controllers and database connections

https://github.com/RcKeller/NextJS-Boilerplate

Barebones React / NodeJS boilerplate featuring SSR, hot reloading, nodemon and Webpack

NextJS-Boilerplate An unopinionated yet extensible starter fullstack boilerplate based on NextJS 7 This provides the build infrastructure and structure necessary to make any kind of React application, with or without an internal API Testing with Jest/Enzyme and Bundle Analysis comes built-in The server includes a lightweight API controller connected to the RedHat Security Da

https://github.com/zubairfloat/theme-pannel

Create by Zubair NextJS-Boilerplate An unopinionated yet extensible starter fullstack boilerplate based on NextJS 7 This provides the build infrastructure and structure necessary to make any kind of React application, with or without an internal API Testing with Jest/Enzyme and Bundle Analysis comes built-in The server includes a lightweight API controller connected to the R

Recent Articles

Google prepares 47 Android bug fixes, ten of them rated Critical
The Register • Richard Chirgwin • 05 Dec 2017

Nexus and Pixel owners get their fixes on US Tuesday. The rest of us peasants have to wait

Google has teased 47 Android patches for Nexus and Pixel devices. Among the critical bugs in the Android Security Bulletin, five concern the media framework, one is system-level, four hit Qualcomm components. The worst, Google said, is one of the media framework bugs, not yet fully disclosed, but it “could enable a remote attacker using a specially crafted file to execute arbitrary code within the context of a privileged process”. Two of the media framework bugs only affect Android 6.0 (31 p...

Read more...

References

CWE-20https://sourceware.org/bugzilla/show_bug.cgi?id=20010http://lists.opensuse.org/opensuse-updates/2016-06/msg00030.htmlhttp://lists.opensuse.org/opensuse-updates/2016-07/msg00039.htmlhttp://www.securityfocus.com/bid/88440http://www-01.ibm.com/support/docview.wss?uid=swg21995039https://source.android.com/security/bulletin/2017-12-01http://www.securityfocus.com/bid/102073https://sourceware.org/git/gitweb.cgi?p=glibc.git%3Bh=4ab2ab03d4351914ee53248dc5aef4a8c88ff8b9https://nvd.nist.govhttps://usn.ubuntu.com/3239-3/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322administrator privilegesCVE-2024-1579hardcodedCVE-2023-20198CVE-2024-33587CVE-2024-33449CVE-2024-4308HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook