CVE-2006-3121
CVE-2006-3121
The peel_netstring function in cl_netstring.c in the heartbeat subsystem in High-Availability Linux before 1.2.5, and 2.0 before 2.0.7, allows remote attackers to cause a denial of service (crash) via the length parameter in a heartbeat message.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/28386unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://secunia.com/advisories/21505http://secunia.com/advisories/21511http://secunia.com/advisories/21518http://secunia.com/advisories/21521http://secunia.com/advisories/21629http://security.gentoo.org/glsa/glsa-200608-23.xmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/28396http://www.debian.org/security/2006/dsa-1151http://www.linux-ha.org/_cache/SecurityIssues__sec03.txthttp://www.linux-ha.org/SecurityIssueshttp://www.mandriva.com/security/advisories?name=MDKSA-2006:142http://www.securityfocus.com/bid/19516