Vulnerabilities > CVE-2007-1327 - Null Pointer Dereference vulnerability in Silc Silc-Server 1.0.2

047910
CVSS 7.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
COMPLETE
network
low complexity
silc
CWE-476
exploit available

Summary

The SILC_SERVER_CMD_FUNC function in apps/silcd/command.c in silc-server 1.0.2 allows remote attackers to cause a denial of service (NULL dereference and daemon crash) via a request without a cipher algorithm and an invalid HMAC algorithm.

Vulnerable Configurations

Part Description Count
Application
Silc
1

Common Weakness Enumeration (CWE)

Exploit-Db

descriptionSilc Server 1.0.2 New Channel Remote Denial Of Service Vulnerability. CVE-2007-1327. Dos exploit for linux platform
idEDB-ID:29716
last seen2016-02-03
modified2007-03-06
published2007-03-06
reporterFrank Benkstein
sourcehttps://www.exploit-db.com/download/29716/
titleSilc Server 1.0.2 New Channel Remote Denial of Service Vulnerability