Vulnerability Description
NetBSD 1.5 and earlier and FreeBSD 4.3 and earlier allows a remote attacker to cause a denial of service by sending a large number of IP fragments to the machine, exhausting the mbuf pool.
CVSS Score
5.0
MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Freebsd | Freebsd | <= 4.3 |
| Netbsd | Netbsd | <= 1.5 |
References
- ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:52.fragment.ascExploitPatchVendor Advisory
- ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2001-006.txt.ascPatchVendor Advisory
- http://www.securityfocus.com/bid/2799PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6636
- ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:52.fragment.ascExploitPatchVendor Advisory
- ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2001-006.txt.ascPatchVendor Advisory
- http://www.securityfocus.com/bid/2799PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6636
FAQ
What is CVE-2001-0710?
CVE-2001-0710 is a vulnerability with a CVSS score of 5.0 (MEDIUM). NetBSD 1.5 and earlier and FreeBSD 4.3 and earlier allows a remote attacker to cause a denial of service by sending a large number of IP fragments to the machine, exhausting the mbuf pool.
How severe is CVE-2001-0710?
CVE-2001-0710 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-0710?
Check the references section above for vendor advisories and patch information. Affected products include: Freebsd Freebsd, Netbsd Netbsd.