Lucene search

DebianCVE-2005-3694

HistoryNov 20, 2005 - 8:03 p.m.

CVE-2005-3694

2005-11-2020:03:00

debian

web.nvd.nist.gov

cve-2005-3694

centericq

dos

remote attackers

segmentation fault

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.5

Confidence

High

EPSS

0.231

Percentile

96.6%

JSON

centericq 4.20.0-r3 with “Enable peer-to-peer communications” set allows remote attackers to cause a denial of service (segmentation fault and crash) via short zero-length packets, and possibly packets of length 1 or 2, as demonstrated using Nessus.

Affected configurations

Nvd

Node

centericqcentericqMatch4.20.0_r3

VendorProductVersionCPE
centericqcentericq4.20.0_r3cpe:2.3:a:centericq:centericq:4.20.0_r3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
centericq	centericq	4.20.0_r3	cpe:2.3:a:centericq:centericq:4.20.0_r3:::::::*

References

bugs.debian.org/cgi-bin/bugreport.cgi?bug=334089

secunia.com/advisories/17798

secunia.com/advisories/17818

secunia.com/advisories/18081

security.gentoo.org/glsa/glsa-200512-11.xml

www.debian.org/security/2005/dsa-912

www.osvdb.org/21270

www.securityfocus.com/bid/15649

bugs.gentoo.org/show_bug.cgi?id=100519

exchange.xforce.ibmcloud.com/vulnerabilities/23327

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.5

Confidence

High

EPSS

0.231

Percentile

96.6%

JSON

Related for CVE-2005-3694