CVE-2011-3604Improper Restriction of Operations within the Bounds of a Memory Buffer in Router Advertisement Daemon

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer9 documents8 sources
Severity
7.5HIGHNVD
EPSS
0.5%
top 34.10%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Litech Router Advertisement Daemon
Timeline
PublishedFeb 17
Latest updateMay 17

Description

The process_ra function in the router advertisement daemon (radvd) before 1.8.2 allows remote attackers to cause a denial of service (stack-based buffer over-read and crash) via unspecified vectors.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

🔴Vulnerability Details

3
GHSA
GHSA-cqww-f3q2-p7g2: The process_ra function in the router advertisement daemon (radvd) before 12022-05-17
CVEList
CVE-2011-3604: The process_ra function in the router advertisement daemon (radvd) before 12014-02-17
OSV
CVE-2011-3604: The process_ra function in the router advertisement daemon (radvd) before 12014-02-17

📋Vendor Advisories

3
Ubuntu
radvd vulnerabilities2011-11-10
Red Hat
radvd: numerous buffer overread flaws in process_ra() may lead to crash2011-10-04
Debian
CVE-2011-3604: radvd - The process_ra function in the router advertisement daemon (radvd) before 1.8.2 ...2011

💬Community

2
Bugzilla
CVE-2011-3601 CVE-2011-3602 CVE-2011-3604 CVE-2011-3605 radvd various flaws [fedora-all]2011-10-07
Bugzilla
CVE-2011-3604 radvd: numerous buffer overread flaws in process_ra() may lead to crash2011-10-05
CVE-2011-3604 — HIGH severity | cvebase