Vulnerability Database

296,138

Total vulnerabilities in the database

CVE-2006-3202

The ip6_savecontrol function in NetBSD 2.0 through 3.0, under certain configurations, does not check to see if IPv4-mapped sockets are being used before processing IPv6 socket options, which allows local users to cause a denial of service (crash) by creating an IPv4-mapped IPv6 socket with the SO_TIMESTAMP socket option set, then sending an IPv4 packet through the socket.

  • Published: Jun 23, 2006
  • Updated: Apr 13, 2023
  • CVE: CVE-2006-3202
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 4.9
  • AV:L/AC:L/Au:N/C:N/I:N/A:C

No CWE or OWASP classifications available.

Software From Fixed in
netbsd / netbsd 2.1 2.1.x
netbsd / netbsd 2.0.2 2.0.2.x
netbsd / netbsd 2.0.3 2.0.3.x
netbsd / netbsd 3.0 3.0.x
netbsd / netbsd 2.0 2.0.x