CVE-2010-2523

UMIP 0.4 - Buffer Overflow via Crafted ND_OPT_PREFIX_INFORMATION or ND_OPT_HOME_AGENT_INFO Packet

Title source: llm
STIX 2.1

Description

Multiple buffer overflows in ha.c in the mipv6 daemon in UMIP 0.4 allow remote attackers to have an unspecified impact via a crafted (1) ND_OPT_PREFIX_INFORMATION or (2) ND_OPT_HOME_AGENT_INFO packet.

References (7)

Core 7
Core References
Mailing List mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2010/07/07/4
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/41522
Patch mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2010/07/06/5
Mailing List mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2010/07/09/1
Mailing List mailing-list x_refsource_mlist
http://marc.info/?l=oss-security&m=127850299910685&w=2
Mailing List mailing-list x_refsource_mlist
http://marc.info/?l=oss-security&m=127859390815405&w=2

Scores

EPSS 0.0296
EPSS Percentile 85.6%

Details

CWE
CWE-119
Status published
Products (1)
linux-ipv6/umip 0.4
Published Jul 13, 2010
Tracked Since Feb 18, 2026