CVE-2008-5081

{"id": "CVE-2008-5081", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2008-12-17T02:30:00.187", "references": [{"url": "http://avahi.org/milestone/Avahi%200.6.24", "source": "secalert@redhat.com"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00000.html", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/33153", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/33220", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/33279", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/33475", "source": "secalert@redhat.com"}, {"url": "http://security.gentoo.org/glsa/glsa-200901-11.xml", "source": "secalert@redhat.com"}, {"url": "http://www.debian.org/security/2008/dsa-1690", "source": "secalert@redhat.com"}, {"url": "http://www.openwall.com/lists/oss-security/2008/12/14/1", "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/bid/32825", "source": "secalert@redhat.com"}, {"url": "http://www.ubuntu.com/usn/usn-696-1", "source": "secalert@redhat.com"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9987", "source": "secalert@redhat.com"}, {"url": "https://www.exploit-db.com/exploits/7520", "source": "secalert@redhat.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-399"}]}], "descriptions": [{"lang": "en", "value": "The originates_from_local_legacy_unicast_socket function (avahi-core/server.c) in avahi-daemon in Avahi before 0.6.24 allows remote attackers to cause a denial of service (crash) via a crafted mDNS packet with a source port of 0, which triggers an assertion failure."}, {"lang": "es", "value": "La funci\u00f3n originates_from_local_legacy_unicast_socket (avahi-core/server.c)en avahi-daemon en Avahi anterior a v0.6.24 permite a atacantes remotos producir una denegaci\u00f3n de servicio (ca\u00edda) a trav\u00e9s de un paquete mDNS manipulado con un puerto de origen de 0, que dispara un fallo de evaluaci\u00f3n."}], "lastModified": "2017-09-29T01:32:28.603", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:avahi:avahi:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E1E36434-D6E7-409A-BB41-CA9F6A9E9B31", "versionEndIncluding": "0.6.23"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EB4B0D9D-FEBD-4C27-8208-CCB5BA5975AE"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EA69351E-9DB3-4F0E-AE4D-C5448BD0D99B"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "236CE850-B281-428F-8E2D-E0CC649C79FF"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1C1BDC60-035E-4F42-8FE2-1B1E22DC64B9"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FC11CFE6-B57C-484C-8F10-9F68FED7B467"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9CC276CA-DC35-4955-82C6-EC0059970195"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.5.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7D330EA3-8EB9-4498-B6AD-787FF14ACE39"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3AACF748-AF75-46B3-BCF7-5E51FE51AB5C"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2D210D68-75A5-4518-B012-23474DA04E04"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FB8A5591-6D72-4E74-A187-936A900CB1F5"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B839D606-3383-4887-862A-3E72F134352F"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D78AC30C-D5F7-4142-B4F2-1132BF0D1000"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5FBA6408-1181-44DA-9C75-734AD745780C"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7C0D4625-24B2-4BF7-B32B-7BCC12C8BD1E"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8266D64B-B067-413E-BDA7-4AB770D4F570"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F99BF964-2FC8-45B5-AD69-4790179B8AF5"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9CA79F96-1C98-49BE-8197-D52B8B6DEF24"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6FF6E882-B66D-4B84-AFE7-D96B1B43E65D"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AC5A8266-1859-45EB-9F16-BF0A5DE1A651"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DC2000C5-238B-43EF-B374-E7505CC61B29"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9BAC2B1B-C800-410D-8484-569675FFD484"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BD6F264D-6E78-4E57-96F7-C8B86BDFBD95"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.16:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2A18985C-8EBB-43A0-BCFC-5CF08DF9D3A4"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.17:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "26E4AECD-B872-46D5-AAA0-280CC32E2F64"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.18:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "563F6941-3A7E-4C44-BAC8-C19BDED9BDF6"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.19:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "12B07E9A-345B-4E14-9D0D-5CAB84761D93"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.20:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5A187641-2E8C-4B40-B861-E49294F3E39F"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.21:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C6FE243E-6E65-4726-832D-0585FE31A182"}, {"criteria": "cpe:2.3:a:avahi:avahi:0.6.22:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "735FEE37-3948-46DD-A56F-42078EF31345"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}