Vulnerabilities > CVE-2006-2412 - Remote Buffer Overflow and Denial Of Service vulnerability in Raydium
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
The raydium_network_read function in network.c in Raydium SVN revision 312 and earlier allows remote attackers to cause a denial of service (application crash) via a large ID, which causes an invalid memory access (buffer over-read).
Vulnerable Configurations
Exploit-Db
| description | Raydium. CVE-2006-2408,CVE-2006-2409,CVE-2006-2410,CVE-2006-2411,CVE-2006-2412. Dos exploit for windows platform |
| id | EDB-ID:1784 |
| last seen | 2016-01-31 |
| modified | 2006-05-14 |
| published | 2006-05-14 |
| reporter | Luigi Auriemma |
| source | https://www.exploit-db.com/download/1784/ |
| title | raydium <= svn 309 - Multiple Vulnerabilities Exploit |
References
- http://aluigi.altervista.org/adv/raydiumx-adv.txt
- http://secunia.com/advisories/20097
- http://securityreason.com/securityalert/900
- http://www.securityfocus.com/archive/1/433930/100/0/threaded
- http://www.securityfocus.com/bid/17986
- http://www.vupen.com/english/advisories/2006/1808
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26516