RSS   Vulnerabilities for 'UMIP'   RSS

2010-07-13
 
CVE-2010-2523

CWE-119
 

 
Multiple buffer overflows in ha.c in the mipv6 daemon in UMIP 0.4 allow remote attackers to have an unspecified impact via a crafted (1) ND_OPT_PREFIX_INFORMATION or (2) ND_OPT_HOME_AGENT_INFO packet.

 
 
CVE-2010-2522

CWE-264
 

 
The mipv6 daemon in UMIP 0.4 does not verify that netlink messages originated in the kernel, which allows local users to spoof netlink socket communication via a crafted unicast message.

 


Copyright 2024, cxsecurity.com

 

Back to Top