[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2013-3571Date: (C)2014-05-15   (M)2023-12-22


socat 1.2.0.0 before 1.7.2.2 and 2.0.0-b1 before 2.0.0-b6, when used for a listen type address and the fork option is enabled, allows remote attackers to cause a denial of service (file descriptor consumption) via multiple request that are refused based on the (1) sourceport, (2) lowport, (3) range, or (4) tcpwrap restrictions.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 2.6
Exploit Score: 4.9
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: HIGH
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL
  
Reference:
MDVSA-2013:169
http://www.openwall.com/lists/oss-security/2013/05/26/1
http://www.dest-unreach.org/socat/contrib/socat-secadv4.html

CPE    31
cpe:/a:dest-unreach:socat:1.4.0.0
cpe:/a:dest-unreach:socat:1.4.0.1
cpe:/a:dest-unreach:socat:1.4.1.0
cpe:/a:dest-unreach:socat:2.0.0:b5
...
OVAL    6
oval:org.secpod.oval:def:104981
oval:org.secpod.oval:def:104991
oval:org.secpod.oval:def:1600304
oval:org.secpod.oval:def:89045142
...

© SecPod Technologies