JVN/CVE Demo: Cveinfos

CVE

Id: 48914
CVE No.: CVE-2011-1002
Status: Candidate
Description: avahi-core/socket.c in avahi-daemon in Avahi before 0.6.29 allows remote attackers to cause a denial of service (infinite loop) via an empty mDNS (1) IPv4 or (2) IPv6 UDP packet to port 5353. NOTE: this vulnerability exists because of an incorrect fix for CVE-2010-2244.
Phase: Assigned (20110214)
Votes: None (candidate not yet proposed)
Comments

Actions

Related CVE References

Id	CVE Id	CVE No.	Reference	Actions
531089	48914	CVE-2011-1002	MLIST:[oss-security] 20110218 CVE request: avahi daemon remote denial of service by sending NULL UDP	View
531090	48914	CVE-2011-1002	URL:http://openwall.com/lists/oss-security/2011/02/18/1	View
531091	48914	CVE-2011-1002	MLIST:[oss-security] 20110218 Re: CVE request: avahi daemon remote denial of service by sending NULL UDP	View
531092	48914	CVE-2011-1002	URL:http://openwall.com/lists/oss-security/2011/02/18/4	View
531093	48914	CVE-2011-1002	MLIST:[oss-security] 20110222 Re: [oss-security] CVE request: avahi daemon remote denial of service by sending NULL UDP	View
531094	48914	CVE-2011-1002	URL:http://www.openwall.com/lists/oss-security/2011/02/22/9	View
531095	48914	CVE-2011-1002	MISC:http://xorl.wordpress.com/2011/02/20/cve-2011-1002-avahi-daemon-remote-denial-of-service/	View
531096	48914	CVE-2011-1002	CONFIRM:http://avahi.org/ticket/325	View
531097	48914	CVE-2011-1002	CONFIRM:http://git.0pointer.de/?p=avahi.git;a=commit;h=46109dfec75534fe270c0ab902576f685d5ab3a6	View
531098	48914	CVE-2011-1002	CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=667187	View
531099	48914	CVE-2011-1002	DEBIAN:DSA-2174	View
531100	48914	CVE-2011-1002	URL:http://www.debian.org/security/2011/dsa-2174	View
531101	48914	CVE-2011-1002	FEDORA:FEDORA-2011-3033	View
531102	48914	CVE-2011-1002	URL:http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055858.html	View
531103	48914	CVE-2011-1002	MANDRIVA:MDVSA-2011:037	View
531104	48914	CVE-2011-1002	URL:http://www.mandriva.com/security/advisories?name=MDVSA-2011:037	View
531105	48914	CVE-2011-1002	MANDRIVA:MDVSA-2011:040	View
531106	48914	CVE-2011-1002	URL:http://www.mandriva.com/security/advisories?name=MDVSA-2011:040	View
531107	48914	CVE-2011-1002	REDHAT:RHSA-2011:0436	View
531108	48914	CVE-2011-1002	URL:http://www.redhat.com/support/errata/RHSA-2011-0436.html	View
531109	48914	CVE-2011-1002	REDHAT:RHSA-2011:0779	View
531110	48914	CVE-2011-1002	URL:http://www.redhat.com/support/errata/RHSA-2011-0779.html	View
531111	48914	CVE-2011-1002	SUSE:SUSE-SR:2011:005	View
531112	48914	CVE-2011-1002	URL:http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html	View
531113	48914	CVE-2011-1002	UBUNTU:USN-1084-1	View
531114	48914	CVE-2011-1002	URL:http://ubuntu.com/usn/usn-1084-1	View
531115	48914	CVE-2011-1002	BID:46446	View
531116	48914	CVE-2011-1002	URL:http://www.securityfocus.com/bid/46446	View
531117	48914	CVE-2011-1002	OSVDB:70948	View
531118	48914	CVE-2011-1002	URL:http://osvdb.org/70948	View
531119	48914	CVE-2011-1002	SECUNIA:43361	View
531120	48914	CVE-2011-1002	URL:http://secunia.com/advisories/43361	View
531121	48914	CVE-2011-1002	SECUNIA:43465	View
531122	48914	CVE-2011-1002	URL:http://secunia.com/advisories/43465	View
531123	48914	CVE-2011-1002	SECUNIA:43605	View
531124	48914	CVE-2011-1002	URL:http://secunia.com/advisories/43605	View
531125	48914	CVE-2011-1002	SECUNIA:43673	View
531126	48914	CVE-2011-1002	URL:http://secunia.com/advisories/43673	View
531127	48914	CVE-2011-1002	SECUNIA:44131	View
531128	48914	CVE-2011-1002	URL:http://secunia.com/advisories/44131	View
531129	48914	CVE-2011-1002	VUPEN:ADV-2011-0448	View
531130	48914	CVE-2011-1002	URL:http://www.vupen.com/english/advisories/2011/0448	View
531131	48914	CVE-2011-1002	VUPEN:ADV-2011-0499	View
531132	48914	CVE-2011-1002	URL:http://www.vupen.com/english/advisories/2011/0499	View
531133	48914	CVE-2011-1002	VUPEN:ADV-2011-0511	View
531134	48914	CVE-2011-1002	URL:http://www.vupen.com/english/advisories/2011/0511	View
531135	48914	CVE-2011-1002	VUPEN:ADV-2011-0565	View
531136	48914	CVE-2011-1002	URL:http://www.vupen.com/english/advisories/2011/0565	View
531137	48914	CVE-2011-1002	VUPEN:ADV-2011-0601	View
531138	48914	CVE-2011-1002	URL:http://www.vupen.com/english/advisories/2011/0601	View
531139	48914	CVE-2011-1002	VUPEN:ADV-2011-0670	View
531140	48914	CVE-2011-1002	URL:http://www.vupen.com/english/advisories/2011/0670	View
531141	48914	CVE-2011-1002	VUPEN:ADV-2011-0969	View
531142	48914	CVE-2011-1002	URL:http://www.vupen.com/english/advisories/2011/0969	View
531143	48914	CVE-2011-1002	XF:avahi-udp-dos(65524)	View
531144	48914	CVE-2011-1002	URL:http://xforce.iss.net/xforce/xfdb/65524	View
531145	48914	CVE-2011-1002	XF:avahi-udp-packet-dos(65525)	View

Related JVN

Id	JVN No.	Title	Summary	CVE No.	CVE Id	CVSS_v2	CVSS_v3	JVN URL	Actions
34050	JVNDB-2011-004292	Best Practical Solutions RT における資格情報を取得される脆弱性	Best Practical Solutions RT には、ログインにおいて特定のリダイレクト操作を実行しないため、資格情報を取得される脆弱性が存在します。	CVE-2011-1007	48914	2.1		http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-004292.html	View

Message	Memory use
Component initialization	1.39 MB
Controller action start	1.49 MB
Controller render start	2.36 MB
View render complete	2.85 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	2.80
Event: Controller.initialize	0.02
Event: Controller.startup	0.06
Controller action	400.78
Event: Controller.beforeRender	4.39
» Processing toolbar data	4.29
Rendering View	17.85
» Event: View.beforeRender	0.02
» Rendering APP/View/Cveinfos/view.ctp	16.61
» Event: View.afterRender	0.02
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	0.73
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	0.10
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/cveinfos/view/48914
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/cveinfos/view/48914
Remote Port	23186
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	216.73.216.111
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Connection	close
Http Cache Control	max-age=259200
Http X Forwarded For	10.1.211.250
Http Via	1.1 squid-proxy-5b5d847c96-knn9n (squid/6.13)
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Suspectharddos	1
Suspectdos	1
X Dostranslated Ip	216.73.216.111
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	216.73.216.111
Unique Id	aNqsUIj64pRFi5xlfuRISwAAAbU
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Suspectharddos	1
Redirect Suspectdos	1
Redirect X Dostranslated Ip	216.73.216.111
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	216.73.216.111
Redirect Unique Id	aNqsUIj64pRFi5xlfuRISwAAAbU
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect Suspectharddos	1
Redirect Redirect Suspectdos	1
Redirect Redirect X Dostranslated Ip	216.73.216.111
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	216.73.216.111
Redirect Redirect Unique Id	aNqsUIj64pRFi5xlfuRISwAAAbU
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1759161424.2204
Request Time	1759161424

CVE

Actions

Related CVE References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files