Vulnerabilities > CVE-2015-1846 - Resource Management Errors vulnerability in Unzoo

CVSS 7.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

low complexity

unzoo

CWE-399

NVD

Published: 2015-05-19

Updated: 2016-08-02

Summary

unzoo allows remote attackers to cause a denial of service (infinite loop and resource consumption) via unspecified vectors to the (1) ExtrArch or (2) ListArch function, related to pointer handling.

Vulnerable Configurations

Part	Description	Count
Application	Unzoo Unzoo Unzoo -	1

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

References

http://www.openwall.com/lists/oss-security/2015/04/01/5
http://www.securityfocus.com/bid/73686
http://www.securitytracker.com/id/1032011
https://bugzilla.redhat.com/show_bug.cgi?id=1207647