vendor:
GNUnet
by:
Luigi Auriemma
7,5
CVSS
HIGH
Denial of Service
399
CWE
Product Name: GNUnet
Affected Version From: 0.7.0d
Affected Version To: 0.7.0d
Patch Exists: YES
Related CWE: CVE-2006-0991
CPE: a:gnunet:gnunet
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Linux
2006
GNUnet <= 0.7.0d (Empty UDP Packet) Remote Denial of Service Exploit
GNUnet is vulnerable to a remote denial of service attack. An attacker can send an empty UDP packet to the GNUnet port and cause the service to crash.
Mitigation:
Upgrade to GNUnet 0.7.0e or later.
