Vulnerabilities > CVE-2006-5873
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Buffer overflow in the cluster_process_heartbeat function in cluster.c in layer 2 tunneling protocol network server (l2tpns) before 2.1.21 allows remote attackers to cause a denial of service via a large heartbeat packet.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 3 | |
| OS | 1 |
Nessus
| NASL family | Debian Local Security Checks |
| NASL id | DEBIAN_DSA-1230.NASL |
| description | Rhys Kidd discovered a vulnerability in l2tpns, a layer 2 tunnelling protocol network server, which could be triggered by a remote user to execute arbitrary code. |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 23791 |
| published | 2006-12-11 |
| reporter | This script is Copyright (C) 2006-2019 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/23791 |
| title | Debian DSA-1230-1 : l2tpns - buffer overflow |
| code | |
References
- http://l2tpns.cvs.sourceforge.net/l2tpns/l2tpns/cluster.c?r1=1.53&r2=1.54
- http://l2tpns.cvs.sourceforge.net/l2tpns/l2tpns/cluster.c?r1=1.53&r2=1.54
- http://secunia.com/advisories/23230
- http://secunia.com/advisories/23230
- http://secunia.com/advisories/23333
- http://secunia.com/advisories/23333
- http://sourceforge.net/project/shownotes.php?group_id=97282&release_id=468202
- http://sourceforge.net/project/shownotes.php?group_id=97282&release_id=468202
- http://www.debian.org/security/2006/dsa-1230
- http://www.debian.org/security/2006/dsa-1230
- http://www.securityfocus.com/bid/21443
- http://www.securityfocus.com/bid/21443
- http://www.vupen.com/english/advisories/2006/4860
- http://www.vupen.com/english/advisories/2006/4860
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30732
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30732