Vulnerability Name:

CVE-2011-3601 (CCN-70412)

Assigned:2011-10-07
Published:2011-10-07
Updated:2014-02-21
Summary:Buffer overflow in the process_ra function in the router advertisement daemon (radvd) before 1.8.2 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a negative value in a label_len value.
CVSS v3 Severity:5.9 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
5.5 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
4.4 Medium (CCN CVSS v2 Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P)
3.2 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Medium
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-119
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2011-3601

Source: CCN
Type: SA46200
radvd Privilege Escalation and Denial of Service Vulnerabilities

Source: CCN
Type: radvd Web Site
Linux IPv6 Router Advertisement Daemon (radvd)

Source: CONFIRM
Type: UNKNOWN
http://www.litech.org/radvd/CHANGES

Source: CCN
Type: oss-security:Solar Designer | 7 Oct 02:52
radvd 1.8.2 released with security fixes

Source: MLIST
Type: UNKNOWN
[oss-security] 20111007 radvd 1.8.2 released with security fixes

Source: CCN
Type: OSVDB ID: 76127
radvd process.c process_ra() Function ND_OPT_DNSSL_INFORMATION Option Parsing Overflow

Source: CCN
Type: BID-50395
radvd Multiple Local and Remote Vulnerabilities

Source: UBUNTU
Type: UNKNOWN
USN-1257-1

Source: XF
Type: UNKNOWN
radvd-process-bo(70412)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:litech:router_advertisement_daemon:*:*:*:*:*:*:*:* (Version <= 1.8.1)

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20113601
    V
    		CVE-2011-3601
    2022-05-20
    oval:org.opensuse.security:def:33117
    P
    		Security update for openexr (Important)
    2022-01-12
    oval:org.opensuse.security:def:30257
    P
    		Security update for MozillaFirefox (Important)
    2021-10-15
    oval:org.opensuse.security:def:29432
    P
    		Security update for apache2 (Important)
    2021-10-06
    oval:org.opensuse.security:def:30220
    P
    		Security update for openexr (Important)
    2021-06-24
    oval:org.opensuse.security:def:33631
    P
    		Security update for spamassassin (Important)
    2021-04-12
    oval:org.opensuse.security:def:29481
    P
    		Security update for the Linux Kernel (Important)
    2021-03-09
    oval:org.opensuse.security:def:33022
    P
    		Security update for python3 (Important)
    2021-02-08
    oval:org.opensuse.security:def:29378
    P
    		Security update for java-1_7_1-ibm (Moderate)
    2021-01-04
    oval:org.opensuse.security:def:28867
    P
    		Security update for openssl (Important)
    2020-12-11
    oval:org.opensuse.security:def:33475
    P
    		Security update for Mozilla
    2020-12-01
    oval:org.opensuse.security:def:29141
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:32808
    P
    		xorg-x11 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33563
    P
    		Security update for ImageMagick (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28787
    P
    		Security update for Mozilla NSS
    2020-12-01
    oval:org.opensuse.security:def:33174
    P
    		libproxy0 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:34309
    P
    		Security update for radvd
    2020-12-01
    oval:org.opensuse.security:def:29538
    P
    		Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:33418
    P
    		Security update for NetworkManager
    2020-12-01
    oval:org.opensuse.security:def:29084
    P
    		Security update for dnsmasq (Important)
    2020-12-01
    oval:org.opensuse.security:def:32797
    P
    		tftp on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33524
    P
    		Security update for tar
    2020-12-01
    oval:org.opensuse.security:def:29225
    P
    		Security update for php53 (Important)
    2020-12-01
    oval:org.opensuse.security:def:32887
    P
    		java-1_7_0-ibm on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28786
    P
    		Security update for mozilla-nss (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33587
    P
    		Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:28798
    P
    		Security update for OpenSLP
    2020-12-01
    oval:org.opensuse.security:def:34269
    P
    		Security update for puppet
    2020-12-01
    oval:org.opensuse.security:def:29520
    P
    		Security update for LibVNCServer (Critical)
    2020-12-01
    oval:org.opensuse.security:def:33261
    P
    		strongswan on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28998
    P
    		Security update for gnutls (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32796
    P
    		tar on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29582
    P
    		Security update for apache2 (Moderate)
    2020-12-01
    oval:org.mitre.oval:def:14652
    P
    		USN-1257-1 -- radvd vulnerabilities
    2014-06-30
    BACK
    litech router advertisement daemon *