Back to search
CVE-2006-6318
Published: Dec 28, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
The show_elog_list function in elogd.c in elog 2.6.2 and earlier allows remote authenticated users to cause a denial of service (daemon crash) by attempting to access a logbook whose name begins with "global," which results in a NULL pointer dereference. NOTE: some of these details are obtained from third party information.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
ADV-2006-4423
vdb-entry
x_refsource_VUPEN
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=397875
x_refsource_MISC
23580
third-party-advisory
x_refsource_SECUNIA
1017450
vdb-entry
x_refsource_SECTRACK
30272
vdb-entry
x_refsource_OSVDB
DSA-1242
vendor-advisory
x_refsource_DEBIAN
22800
third-party-advisory
x_refsource_SECUNIA
2060
third-party-advisory
x_refsource_SREASON
21028
vdb-entry
x_refsource_BID
20061112 ELOG Web Logbook Remote Denial of Service Vulnerability
mailing-list
x_refsource_FULLDISC
20061113 ELOG Web Logbook Remote Denial of Service Vulnerability
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now