Dibbler Multiple Memory Corruption Vulnerabilities
BID:25726
Info
Dibbler Multiple Memory Corruption Vulnerabilities
| Bugtraq ID: | 25726 |
| Class: | Unknown |
| CVE: |
CVE-2007-5030 CVE-2007-5031 CVE-2007-5029 |
| Remote: | Yes |
| Local: | No |
| Published: | Sep 19 2007 12:00AM |
| Updated: | Jul 06 2016 02:17PM |
| Credit: | Mu Security research team is credited with the discovery of these vulnerabilities. |
| Vulnerable: |
Dibbler Dibbler 0.6 |
| Not Vulnerable: |
Dibbler Dibbler 0.6.1 |
Discussion
Dibbler Multiple Memory Corruption Vulnerabilities
Dibbler is prone to multiple memory-corruption vulnerabilities, including an integer-overflow issue, a buffer-overflow issue, and a NULL-pointer-dereference issue.
An attacker could exploit these issues by sending a malicious IPv6 packet to a computer running the affected application.
Successfully exploiting these issues will allow the attacker to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.
These issues affect Dibbler 0.6.0; prior versions may also be affected.
Dibbler is prone to multiple memory-corruption vulnerabilities, including an integer-overflow issue, a buffer-overflow issue, and a NULL-pointer-dereference issue.
An attacker could exploit these issues by sending a malicious IPv6 packet to a computer running the affected application.
Successfully exploiting these issues will allow the attacker to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.
These issues affect Dibbler 0.6.0; prior versions may also be affected.
Exploit / POC
Dibbler Multiple Memory Corruption Vulnerabilities
Currently we are not aware of any working exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any working exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Dibbler Multiple Memory Corruption Vulnerabilities
Solution:
The vendor released Dibbler 0.6.1 to address these issues. Please see the references for more information.
Dibbler Dibbler 0.6
Solution:
The vendor released Dibbler 0.6.1 to address these issues. Please see the references for more information.
Dibbler Dibbler 0.6
-
Dibbler dibbler-0.6.1-linux.tar.gz
http://klub.com.pl/dhcpv6/dibbler/dibbler-0.6.1-linux.tar.gz