CVE-2008-0177

CVE-2008-0177 · HIGH Severity

AV:N/AC:L/AU:N/C:N/I:N/A:C

The ipcomp6_input function in sys/netinet6/ipcomp_input.c in the KAME project before 20071201 does not properly check the return value of the m_pulldown function, which allows remote attackers to cause a denial of service (system crash) via an IPv6 packet with an IPComp header.

Learn more about our Web Application Penetration Testing UK.