CVE-2011-3605

EUVD-2011-3564
The process_rs function in the router advertisement daemon (radvd) before 1.8.2, when UnicastOnly is enabled, allows remote attackers to cause a denial of service (temporary service hang) via a large number of ND_ROUTER_SOLICIT requests.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 66%
Affected Products (NVD)
VendorProductVersion
litechrouter_advertisement_daemon
𝑥
≤ 1.8.1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
radvd
bookworm
1:2.19-1
fixed
bullseye
1:2.18-3
fixed
sid
1:2.19-2.1
fixed
trixie
1:2.19-2.1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
radvd
hardy
ignored
lucid
Fixed 1:1.3-1.1ubuntu0.1
released
maverick
Fixed 1:1.6-1ubuntu0.1
released
natty
Fixed 1:1.7-1ubuntu0.1
released
oneiric
Fixed 1:1.8-1ubuntu0.1
released
Common Weakness Enumeration
References
http://www.debian.org/security/2011/dsa-2323
http://www.litech.org/radvd/CHANGES
http://www.openwall.com/lists/oss-security/2011/10/06/3
http://www.ubuntu.com/usn/USN-1257-1
http://www.debian.org/security/2011/dsa-2323
http://www.litech.org/radvd/CHANGES
http://www.openwall.com/lists/oss-security/2011/10/06/3
http://www.ubuntu.com/usn/USN-1257-1