CVE-2006-6318
published 2006-12-28CVE-2006-6318: The show_elog_list function in elogd.c in elog 2.6.2 and earlier allows remote authenticated users to cause a denial of service (daemon crash) by attempting to…
PriorityP417medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
3.18%
86.4th percentile
The show_elog_list function in elogd.c in elog 2.6.2 and earlier allows remote authenticated users to cause a denial of service (daemon crash) by attempting to access a logbook whose name begins with "global," which results in a NULL pointer dereference. NOTE: some of these details are obtained from third party information.
Affected
22 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| stefan_ritt | elog_web_logbook | <= 2.6.2 | — |
| stefan_ritt | elog_web_logbook | — | — |
| stefan_ritt | elog_web_logbook | — | — |
| stefan_ritt | elog_web_logbook | — | — |
| stefan_ritt | elog_web_logbook | — | — |
| stefan_ritt | elog_web_logbook | — | — |
| stefan_ritt | elog_web_logbook | — | — |
| stefan_ritt | elog_web_logbook | — | — |
| stefan_ritt | elog_web_logbook | — | — |
| stefan_ritt | elog_web_logbook | — | — |
| stefan_ritt | elog_web_logbook | — | — |
| stefan_ritt | elog_web_logbook | — | — |
| stefan_ritt | elog_web_logbook | — | — |
| stefan_ritt | elog_web_logbook | — | — |
| stefan_ritt | elog_web_logbook | — | — |
| stefan_ritt | elog_web_logbook | — | — |
| stefan_ritt | elog_web_logbook | — | — |
| stefan_ritt | elog_web_logbook | — | — |
| stefan_ritt | elog_web_logbook | — | — |
| stefan_ritt | elog_web_logbook | — | — |
| stefan_ritt | elog_web_logbook | — | — |
| stefan_ritt | elog_web_logbook | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/fulldisclosure/2006-11/0198.htmlhttp://bugs.debian.org/cgi-bin/bugreport.cgi?bug=397875http://secunia.com/advisories/22800http://secunia.com/advisories/23580http://securityreason.com/securityalert/2060http://securitytracker.com/id?1017450http://www.debian.org/security/2006/dsa-1242http://www.osvdb.org/30272http://www.securityfocus.com/archive/1/451351http://www.securityfocus.com/bid/21028http://www.vupen.com/english/advisories/2006/4423http://archives.neohapsis.com/archives/fulldisclosure/2006-11/0198.htmlhttp://bugs.debian.org/cgi-bin/bugreport.cgi?bug=397875http://secunia.com/advisories/22800http://secunia.com/advisories/23580http://securityreason.com/securityalert/2060http://securitytracker.com/id?1017450http://www.debian.org/security/2006/dsa-1242http://www.osvdb.org/30272http://www.securityfocus.com/archive/1/451351http://www.securityfocus.com/bid/21028http://www.vupen.com/english/advisories/2006/4423
2006-12-28
Published