CVE-2011-1002

{"id": "CVE-2011-1002", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2011-02-22T19:00:02.503", "references": [{"url": "http://avahi.org/ticket/325", "tags": ["Broken Link"], "source": "secalert@redhat.com"}, {"url": "http://git.0pointer.de/?p=avahi.git%3Ba=commit%3Bh=46109dfec75534fe270c0ab902576f685d5ab3a6", "tags": ["Broken Link"], "source": "secalert@redhat.com"}, {"url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055858.html", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html", "tags": ["Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "http://openwall.com/lists/oss-security/2011/02/18/1", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "http://openwall.com/lists/oss-security/2011/02/18/4", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "http://osvdb.org/70948", "tags": ["Broken Link"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/43361", "tags": ["Broken Link", "Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/43465", "tags": ["Broken Link"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/43605", "tags": ["Broken Link"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/43673", "tags": ["Broken Link"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/44131", "tags": ["Broken Link"], "source": "secalert@redhat.com"}, {"url": "http://ubuntu.com/usn/usn-1084-1", "tags": ["Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.debian.org/security/2011/dsa-2174", "tags": ["Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:037", "tags": ["Broken Link"], "source": "secalert@redhat.com"}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:040", "tags": ["Broken Link"], "source": "secalert@redhat.com"}, {"url": "http://www.openwall.com/lists/oss-security/2011/02/22/9", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.redhat.com/support/errata/RHSA-2011-0436.html", "tags": ["Broken Link"], "source": "secalert@redhat.com"}, {"url": "http://www.redhat.com/support/errata/RHSA-2011-0779.html", "tags": ["Broken Link"], "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/bid/46446", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "source": "secalert@redhat.com"}, {"url": "http://www.vupen.com/english/advisories/2011/0448", "tags": ["Broken Link", "Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.vupen.com/english/advisories/2011/0499", "tags": ["Broken Link", "Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.vupen.com/english/advisories/2011/0511", "tags": ["Broken Link"], "source": "secalert@redhat.com"}, {"url": "http://www.vupen.com/english/advisories/2011/0565", "tags": ["Broken Link"], "source": "secalert@redhat.com"}, {"url": "http://www.vupen.com/english/advisories/2011/0601", "tags": ["Broken Link"], "source": "secalert@redhat.com"}, {"url": "http://www.vupen.com/english/advisories/2011/0670", "tags": ["Broken Link"], "source": "secalert@redhat.com"}, {"url": "http://www.vupen.com/english/advisories/2011/0969", "tags": ["Broken Link"], "source": "secalert@redhat.com"}, {"url": "http://xorl.wordpress.com/2011/02/20/cve-2011-1002-avahi-daemon-remote-denial-of-service/", "tags": ["Exploit", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=667187", "tags": ["Issue Tracking", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65524", "tags": ["Not Applicable"], "source": "secalert@redhat.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65525", "tags": ["Third Party Advisory", "VDB Entry"], "source": "secalert@redhat.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-835"}]}], "descriptions": [{"lang": "en", "value": "avahi-core/socket.c in avahi-daemon in Avahi before 0.6.29 allows remote attackers to cause a denial of service (infinite loop) via an empty mDNS (1) IPv4 or (2) IPv6 UDP packet to port 5353. NOTE: this vulnerability exists because of an incorrect fix for CVE-2010-2244."}, {"lang": "es", "value": "avahi-core/socket.c en avahi-daemon en Avahi antes de v0.6.29 permite a atacantes remotos provocar una denegaci\u00f3n de servicio (bucle infinito) a trav\u00e9s de un paquete UDP (1) IPv4 o (2) IPv6 vac\u00edos al puerto 5353. NOTA: esta vulnerabilidad existe debido a una correcci\u00f3n incorrecta del CVE-2010-2244."}], "lastModified": "2023-12-22T18:19:10.320", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:avahi:avahi:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "95B53C03-9556-4464-96C9-BF5B0CA9C88B", "versionEndIncluding": "0.6.28"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EB4B0D9D-FEBD-4C27-8208-CCB5BA5975AE"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EA69351E-9DB3-4F0E-AE4D-C5448BD0D99B"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "236CE850-B281-428F-8E2D-E0CC649C79FF"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1C1BDC60-035E-4F42-8FE2-1B1E22DC64B9"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FC11CFE6-B57C-484C-8F10-9F68FED7B467"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9CC276CA-DC35-4955-82C6-EC0059970195"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.5.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7D330EA3-8EB9-4498-B6AD-787FF14ACE39"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3AACF748-AF75-46B3-BCF7-5E51FE51AB5C"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2D210D68-75A5-4518-B012-23474DA04E04"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FB8A5591-6D72-4E74-A187-936A900CB1F5"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B839D606-3383-4887-862A-3E72F134352F"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D78AC30C-D5F7-4142-B4F2-1132BF0D1000"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5FBA6408-1181-44DA-9C75-734AD745780C"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7C0D4625-24B2-4BF7-B32B-7BCC12C8BD1E"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8266D64B-B067-413E-BDA7-4AB770D4F570"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F99BF964-2FC8-45B5-AD69-4790179B8AF5"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9CA79F96-1C98-49BE-8197-D52B8B6DEF24"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6FF6E882-B66D-4B84-AFE7-D96B1B43E65D"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AC5A8266-1859-45EB-9F16-BF0A5DE1A651"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DC2000C5-238B-43EF-B374-E7505CC61B29"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9BAC2B1B-C800-410D-8484-569675FFD484"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BD6F264D-6E78-4E57-96F7-C8B86BDFBD95"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.16:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2A18985C-8EBB-43A0-BCFC-5CF08DF9D3A4"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.17:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "26E4AECD-B872-46D5-AAA0-280CC32E2F64"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.18:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "563F6941-3A7E-4C44-BAC8-C19BDED9BDF6"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.19:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "12B07E9A-345B-4E14-9D0D-5CAB84761D93"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.20:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5A187641-2E8C-4B40-B861-E49294F3E39F"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.21:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C6FE243E-6E65-4726-832D-0585FE31A182"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.22:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "735FEE37-3948-46DD-A56F-42078EF31345"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.23:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9658080D-9785-4FB2-90A5-46F5A42923EF"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.24:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E6EBAEB0-523C-4722-9E22-6A607641F919"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.25:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BCABA66C-DFA0-4760-9176-F2D693381620"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.26:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EE1D288C-8288-4BA8-A2C4-829A5891EF3B"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.27:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "18AA4A79-C9C6-4D39-978E-0F55152AAC53"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:fedoraproject:fedora:15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9396E005-22D8-4342-9323-C7DEA379191D"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1D8B549B-E57B-4DFE-8A13-CAB06B5356B3"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:lts:*:*:*", "vulnerable": true, "matchCriteriaId": "C91D2DBF-6DA7-4BA2-9F29-8BD2725A4701"}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A2BCB73E-27BB-4878-AD9C-90C4F20C25A0"}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:*", "vulnerable": true, "matchCriteriaId": "5D37DF0F-F863-45AC-853A-3E04F9FEC7CA"}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "87614B58-24AB-49FB-9C84-E8DDBA16353B"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8C757774-08E7-40AA-B532-6F705C8F7639"}, {"criteria": "cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "036E8A89-7A16-411F-9D31-676313BB7244"}, {"criteria": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "16F59A04-14CF-49E2-9973-645477EA09DA"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}