CVE-2008-5081 : Detail

The originates_from_local_legacy_unicast_socket function (avahi-core/server.c) in avahi-daemon in Avahi before 0.6.24 allows remote attackers to cause a denial of service (crash) via a crafted mDNS packet with a source port of 0, which triggers an assertion failure.

Related Weaknesses

Metrics

EPSS

EPSS Score

EPSS Percentile

Exploit information

Exploit Database EDB-ID : 7520

Publication date : 2008-12-18 23h00 +00:00
Author : Jon Oberheide
EDB Verified : Yes

Products Mentioned

Configuraton 0

Avahi>>Avahi >> Version To (including) 0.6.23

Avahi>>Avahi >> Version 0.1

Avahi>>Avahi >> Version 0.2

Avahi>>Avahi >> Version 0.3

Avahi>>Avahi >> Version 0.4

Avahi>>Avahi >> Version 0.5

Avahi>>Avahi >> Version 0.5.1

Avahi>>Avahi >> Version 0.5.2

Avahi>>Avahi >> Version 0.6.1

Avahi>>Avahi >> Version 0.6.2

Avahi>>Avahi >> Version 0.6.3

Avahi>>Avahi >> Version 0.6.4

Avahi>>Avahi >> Version 0.6.5

Avahi>>Avahi >> Version 0.6.6

Avahi>>Avahi >> Version 0.6.7

Avahi>>Avahi >> Version 0.6.8

Avahi>>Avahi >> Version 0.6.9

Avahi>>Avahi >> Version 0.6.10

Avahi>>Avahi >> Version 0.6.11

Avahi>>Avahi >> Version 0.6.12

Avahi>>Avahi >> Version 0.6.13

Avahi>>Avahi >> Version 0.6.14

Avahi>>Avahi >> Version 0.6.15

Avahi>>Avahi >> Version 0.6.16

Avahi>>Avahi >> Version 0.6.17

Avahi>>Avahi >> Version 0.6.18

Avahi>>Avahi >> Version 0.6.19

Avahi>>Avahi >> Version 0.6.20

Avahi>>Avahi >> Version 0.6.21

Avahi>>Avahi >> Version 0.6.22

References