Vulnerability Description
nuauth in NuFW before 1.0.21 does not properly handle blocking TLS sockets, which allows remote authenticated users to cause a denial of service (service hang) by flooding packets at the authentication server.
CVSS Score
1.7
LOW
AV:L/AC:L/Au:S/C:N/I:N/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Nufw | Nufw Firewall | 1.0.20 |
References
- http://secunia.com/advisories/19046PatchVendor Advisory
- http://www.nufw.org/+NuFW-1-21-minor-security-fix+.htmlPatchVendor Advisory
- http://www.securityfocus.com/bid/16868
- http://www.vupen.com/english/advisories/2006/0762
- http://secunia.com/advisories/19046PatchVendor Advisory
- http://www.nufw.org/+NuFW-1-21-minor-security-fix+.htmlPatchVendor Advisory
- http://www.securityfocus.com/bid/16868
- http://www.vupen.com/english/advisories/2006/0762
FAQ
What is CVE-2006-0956?
CVE-2006-0956 is a vulnerability with a CVSS score of 1.7 (LOW). nuauth in NuFW before 1.0.21 does not properly handle blocking TLS sockets, which allows remote authenticated users to cause a denial of service (service hang) by flooding packets at the authenticatio...
How severe is CVE-2006-0956?
CVE-2006-0956 has been rated LOW with a CVSS base score of 1.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-0956?
Check the references section above for vendor advisories and patch information. Affected products include: Nufw Nufw Firewall.