CVE-2006-6653

The accept function in NetBSD-current before 20061023, NetBSD 3.0 and 3.0.1 before 20061024, and NetBSD 2.x before 20061029 allows local users to cause a denial of service (socket consumption) via an invalid (1) name or (2) namelen parameter, which may result in the socket never being closed (aka "a dangling socket").
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:netbsd:netbsd:2.0:*:*:*:*:*:*:*
cpe:2.3:o:netbsd:netbsd:3.0:*:*:*:*:*:*:*
cpe:2.3:o:netbsd:netbsd:3.0.1:*:*:*:*:*:*:*
cpe:2.3:o:netbsd:netbsd:current:*:*:*:*:*:*:*

History

No history.

Information

Published : 2006-12-20 02:28

Updated : 2024-02-28 11:01


NVD link : CVE-2006-6653

Mitre link : CVE-2006-6653

CVE.ORG link : CVE-2006-6653


JSON object : View

Products Affected

netbsd

  • netbsd
CWE
CWE-20

Improper Input Validation