CyberSec.Space Logo
CVEブラウザに戻る

CVE-2006-4304

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0190%
EPSS Percentile1.82th
Published2006年8月24日
Last Modified2026年4月16日

Vulnerability Description

Buffer overflow in the sppp driver in FreeBSD 4.11 through 6.1, NetBSD 2.0 through 4.0 beta before 20060823, and OpenBSD 3.8 and 3.9 before 20060902 allows remote attackers to cause a denial of service (panic), obtain sensitive information, and possibly execute arbitrary code via crafted Link Control Protocol (LCP) packets with an option length that exceeds the overall length, which triggers the overflow in (1) pppoe and (2) ippp. NOTE: this issue was originally incorrectly reported for the ppp driver.

Affected Platforms (CPE)

💻
Freebsd

Freebsd

= 4.11
💻
Freebsd

Freebsd

= 5.3
💻
Freebsd

Freebsd

= 5.4
💻
Freebsd

Freebsd

= 5.5
💻
Freebsd

Freebsd

= 6.0
💻
Freebsd

Freebsd

= 6.1
💻
Netbsd

Netbsd

= 2.0
💻
Netbsd

Netbsd

= 3.0
💻
Netbsd

Netbsd

= 4.0
💻
Openbsd

Openbsd

= 3.8
💻
Openbsd

Openbsd

= 3.9

References & Advisories

🔗 ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2006-019.txt.asc
🔗 http://secunia.com/advisories/21587
🔗 http://secunia.com/advisories/21731
🔗 http://security.FreeBSD.org/advisories/FreeBSD-SA-06:18.ppp.asc
🔗 http://security.FreeBSD.org/patches/SA-06:18/ppp4x.patch
🔗 http://securitytracker.com/id?1016745
🔗 http://www.openbsd.org/errata.html#sppp
🔗 http://www.openbsd.org/errata38.html#sppp

関連する脆弱性情報

CVE-1999-032310.0

FreeBSD mmap function allows users to modify append-only or immutable files.

CVE-1999-079810.0

Buffer overflow in bootpd on OpenBSD, FreeBSD, and Linux systems via a malformed header type.

CVE-2018-1716010.0

In FreeBSD before 11.2-STABLE(r341486) and 11.2-RELEASE-p6, insufficient bounds checking in one of the device models provided by b...

CVE-2001-096910.0

ipfw in FreeBSD does not properly handle the use of "me" in its rules when point to point interfaces are used, which causes ipfw t...