Vulnerability Database

290,273

Total vulnerabilities in the database

CVE-2014-3954

Stack-based buffer overflow in rtsold in FreeBSD 9.1 through 10.1-RC2 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via crafted DNS parameters in a router advertisement message.

  • Published: Oct 27, 2014
  • Updated: Apr 13, 2023
  • CVE: CVE-2014-3954
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 10
  • AV:N/AC:L/Au:N/C:C/I:C/A:C

CWEs:

Software From Fixed in
freebsd / freebsd 10.0 10.0.x
freebsd / freebsd 9.3-rc1 9.3-rc1.x
freebsd / freebsd 10.1-rc2 10.1-rc2.x
freebsd / freebsd 10.0-rc1 10.0-rc1.x
freebsd / freebsd 9.1 9.1.x
freebsd / freebsd 9.2 9.2.x
freebsd / freebsd 9.3 9.3.x
freebsd / freebsd 9.2-rc1 9.2-rc1.x
freebsd / freebsd 9.3-rc2 9.3-rc2.x
freebsd / freebsd 10.1-rc1 10.1-rc1.x
freebsd / freebsd 9.2-prerelease 9.2-prerelease.x
freebsd / freebsd 9.2-rc2 9.2-rc2.x
freebsd / freebsd 10.1 10.1.x
freebsd / freebsd 10.0-rc2 10.0-rc2.x
freebsd / freebsd 9.1-p4 9.1-p4.x
freebsd / freebsd 9.1-p5 9.1-p5.x