CVE-2001-0830

6tunnel 0.08 and earlier does not properly close sockets that were initiated by a client, which allows remote attackers to cause a denial of service (resource exhaustion) by repeatedly connecting to and disconnecting from the server.
Configurations

Configuration 1 (hide)

cpe:2.3:a:6tunnel_project:6tunnel:*:*:*:*:*:*:*:*

History

20 Nov 2024, 23:36

Type Values Removed Values Added
References () ftp://213.146.38.146/pub/wojtekka/6tunnel-0.09.tar.gz - Broken Link () ftp://213.146.38.146/pub/wojtekka/6tunnel-0.09.tar.gz - Broken Link
References () http://marc.info/?l=bugtraq&m=100386451702966&w=2 - Exploit, Mailing List () http://marc.info/?l=bugtraq&m=100386451702966&w=2 - Exploit, Mailing List
References () http://www.securityfocus.com/bid/3467 - Broken Link, Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/3467 - Broken Link, Third Party Advisory, VDB Entry
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/7337 - Third Party Advisory, VDB Entry () https://exchange.xforce.ibmcloud.com/vulnerabilities/7337 - Third Party Advisory, VDB Entry

09 Feb 2024, 02:52

Type Values Removed Values Added
First Time 6tunnel Project
6tunnel Project 6tunnel
CWE NVD-CWE-Other CWE-772
CPE cpe:2.3:a:pld:6tunnel:*:*:*:*:*:*:*:* cpe:2.3:a:6tunnel_project:6tunnel:*:*:*:*:*:*:*:*
CVSS v2 : 5.0
v3 : unknown
v2 : 5.0
v3 : 7.5
References () ftp://213.146.38.146/pub/wojtekka/6tunnel-0.09.tar.gz - () ftp://213.146.38.146/pub/wojtekka/6tunnel-0.09.tar.gz - Broken Link
References () http://marc.info/?l=bugtraq&m=100386451702966&w=2 - () http://marc.info/?l=bugtraq&m=100386451702966&w=2 - Exploit, Mailing List
References () http://www.securityfocus.com/bid/3467 - () http://www.securityfocus.com/bid/3467 - Broken Link, Third Party Advisory, VDB Entry
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/7337 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/7337 - Third Party Advisory, VDB Entry

Information

Published : 2001-12-06 05:00

Updated : 2024-11-20 23:36


NVD link : CVE-2001-0830

Mitre link : CVE-2001-0830

CVE.ORG link : CVE-2001-0830


JSON object : View

Products Affected

6tunnel_project

  • 6tunnel
CWE
CWE-772

Missing Release of Resource after Effective Lifetime