Vulnerability Description
centericq 4.20.0-r3 with "Enable peer-to-peer communications" set allows remote attackers to cause a denial of service (segmentation fault and crash) via short zero-length packets, and possibly packets of length 1 or 2, as demonstrated using Nessus.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Centericq | Centericq | 4.20.0_r3 |
References
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=334089Vendor Advisory
- http://secunia.com/advisories/17798
- http://secunia.com/advisories/17818
- http://secunia.com/advisories/18081
- http://security.gentoo.org/glsa/glsa-200512-11.xml
- http://www.debian.org/security/2005/dsa-912
- http://www.osvdb.org/21270
- http://www.securityfocus.com/bid/15649
- https://bugs.gentoo.org/show_bug.cgi?id=100519
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23327
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=334089Vendor Advisory
- http://secunia.com/advisories/17798
- http://secunia.com/advisories/17818
- http://secunia.com/advisories/18081
- http://security.gentoo.org/glsa/glsa-200512-11.xml
FAQ
What is CVE-2005-3694?
CVE-2005-3694 is a vulnerability with a CVSS score of 7.8 (HIGH). centericq 4.20.0-r3 with "Enable peer-to-peer communications" set allows remote attackers to cause a denial of service (segmentation fault and crash) via short zero-length packets, and possibly packet...
How severe is CVE-2005-3694?
CVE-2005-3694 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-3694?
Check the references section above for vendor advisories and patch information. Affected products include: Centericq Centericq.