CVE-2015-1414 — Freebsd vulnerability
6 documents4 sources
Severity
7.8HIGHNVD
EPSS
0.6%
top 31.59%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedFeb 27
Latest updateJul 27
Description
Integer overflow in FreeBSD before 8.4 p24, 9.x before 9.3 p10. 10.0 before p18, and 10.1 before p6 allows remote attackers to cause a denial of service (crash) via a crafted IGMP packet, which triggers an incorrect size calculation and allocation of insufficient memory.
CVSS vector
AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9
Affected Packages1 packages
Also affects: Freebsd 10.0, 10.1, 8.4, 9.0, 9.1, 9.2, 9.3, Debian Linux 7.0