Vulnerability Description
A logic error in the IP fragment cache functionality in pf in FreeBSD 5.3, 5.4, and 6.0, and OpenBSD, when a 'scrub fragment crop' or 'scrub fragment drop-ovl' rule is being used, allows remote attackers to cause a denial of service (crash) via crafted packets that cause a packet fragment to be inserted twice.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Freebsd | Freebsd | 5.3 |
References
- ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:07.pf.ascPatch
- ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2006-004.txt.asc
- http://secunia.com/advisories/18609PatchVendor Advisory
- http://securitytracker.com/id?1015542
- http://www.openbsd.org/cgi-bin/cvsweb/src/sys/net/pf_norm.c.diff?r1=1.103&r2=1.1
- http://www.osvdb.org/22732
- http://www.securityfocus.com/bid/16375
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24337
- ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:07.pf.ascPatch
- ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2006-004.txt.asc
- http://secunia.com/advisories/18609PatchVendor Advisory
- http://securitytracker.com/id?1015542
- http://www.openbsd.org/cgi-bin/cvsweb/src/sys/net/pf_norm.c.diff?r1=1.103&r2=1.1
- http://www.osvdb.org/22732
- http://www.securityfocus.com/bid/16375
FAQ
What is CVE-2006-0381?
CVE-2006-0381 is a vulnerability with a CVSS score of 5.0 (MEDIUM). A logic error in the IP fragment cache functionality in pf in FreeBSD 5.3, 5.4, and 6.0, and OpenBSD, when a 'scrub fragment crop' or 'scrub fragment drop-ovl' rule is being used, allows remote attack...
How severe is CVE-2006-0381?
CVE-2006-0381 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-0381?
Check the references section above for vendor advisories and patch information. Affected products include: Freebsd Freebsd.