Back to search
CVE-2007-6437
Published: Dec 19, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Balabit syslog-ng 2.0.x before 2.0.6 and 2.1.x before 2.1.8 allows remote attackers to cause a denial of service (crash) via a message with a timestamp that does not contain a trailing space, which triggers a NULL pointer dereference.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
26897
vdb-entry
x_refsource_BID
FEDORA-2008-0523
vendor-advisory
x_refsource_FEDORA
20071217 ZSA-2007-029: syslog-ng Denial of Service
mailing-list
x_refsource_BUGTRAQ
DSA-1464
vendor-advisory
x_refsource_DEBIAN
ADV-2007-4257
vdb-entry
x_refsource_VUPEN
https://bugzilla.redhat.com/show_bug.cgi?id=426173
x_refsource_CONFIRM
28279
third-party-advisory
x_refsource_SECUNIA
28118
third-party-advisory
x_refsource_SECUNIA
28483
third-party-advisory
x_refsource_SECUNIA
1019105
vdb-entry
x_refsource_SECTRACK
28372
third-party-advisory
x_refsource_SECUNIA
39551
vdb-entry
x_refsource_OSVDB
GLSA-200712-19
vendor-advisory
x_refsource_GENTOO
FEDORA-2008-0559
vendor-advisory
x_refsource_FEDORA
20071217 Re: [syslog-ng] ZSA-2007-029: syslog-ng Denial of Service
mailing-list
x_refsource_BUGTRAQ
syslogng-timestamp-dos(39082)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now