CVE-2008-5081
CVE-2008-5081
The originates_from_local_legacy_unicast_socket function (avahi-core/server.c) in avahi-daemon in Avahi before 0.6.24 allows remote attackers to cause a denial of service (crash) via a crafted mDNS packet with a source port of 0, which triggers an assertion failure.
Affected products
n/a · n/apublic PoCs found — 1
cve_referencewww.exploit-db.com/exploits/7520unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://avahi.org/milestone/Avahi%200.6.24http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00000.htmlhttp://secunia.com/advisories/33153http://secunia.com/advisories/33220http://secunia.com/advisories/33279http://secunia.com/advisories/33475http://security.gentoo.org/glsa/glsa-200901-11.xmlhttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9987https://www.exploit-db.com/exploits/7520http://www.debian.org/security/2008/dsa-1690http://www.openwall.com/lists/oss-security/2008/12/14/1http://www.securityfocus.com/bid/32825