CVE-2006-0752

Niels Provos Honeyd before 1.5 replies to certain illegal IP packet fragments that other IP stack implementations would drop, which allows remote attackers to identify IP addresses that are being simulated using honeyd.

Published Bycve@mitre.org

Published DateFeb 18, 2006, 02:02

Weakness Type (CWE):NVD-CWE-Other

CVSS Metrics

Base Score

Vector String

AV:N/AC:L/Au:N/C:P/I:N/A:N

Base Severity

Version

2.0

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality (C)

PARTIAL

Integrity (I)

NONE

Availability (A)

NONE

References

http://secunia.com/advisories/18867
http://www.honeyd.org/adv.2006-01
http://www.honeyd.org/phpBB2/viewtopic.php?t=106
http://www.securityfocus.com/archive/1/425112/100/0/threaded
http://www.securityfocus.com/bid/16595
http://www.vupen.com/english/advisories/2006/0552
https://exchange.xforce.ibmcloud.com/vulnerabilities/24728

Weakness Type (CWE):NVD-CWE-Other

CVSS Metrics

Base Score

Vector String

AV:N/AC:L/Au:N/C:P/I:N/A:N

Base Severity

Version

2.0

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality (C)

PARTIAL

Integrity (I)

NONE

Availability (A)

NONE