Executive Summary

Informations
Name CVE-2006-5876 First vendor Publication 2007-01-16
Vendor Cve Last vendor Modification 2017-07-20

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:C)
Cvss Base Score 7.8 Attack Range Network
Cvss Impact Score 6.9 Attack Complexity Low
Cvss Expoit Score 10 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

The soup_headers_parse function in soup-headers.c for libsoup HTTP library before 2.2.99 allows remote attackers to cause a denial of service (crash) via malformed HTTP headers, probably involving missing fields or values.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5876

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 1

OpenVAS Exploits

Date Description
2009-10-10 Name : SLES9: Security update for Red Carpet
File : nvt/sles9p5009366.nasl
2009-10-10 Name : SLES9: Security update for libsoup
File : nvt/sles9p5015490.nasl
2009-10-10 Name : SLES9: Security update for Red Carpet Daemon
File : nvt/sles9p5019739.nasl
2009-04-09 Name : Mandriva Update for libsoup MDKSA-2007:029 (libsoup)
File : nvt/gb_mandriva_MDKSA_2007_029.nasl
2009-03-23 Name : Ubuntu Update for libsoup vulnerability USN-411-1
File : nvt/gb_ubuntu_USN_411_1.nasl
2008-01-17 Name : Debian Security Advisory DSA 1248-1 (libsoup)
File : nvt/deb_1248_1.nasl

Open Source Vulnerability Database (OSVDB)

Id Description
31667 libsoup soup_headers_parse DoS

Nessus® Vulnerability Scanner

Date Description
2009-09-24 Name : The remote SuSE 9 host is missing a security-related patch.
File : suse9_11401.nasl - Type : ACT_GATHER_INFO
2009-09-24 Name : The remote SuSE 9 host is missing a security-related patch.
File : suse9_11461.nasl - Type : ACT_GATHER_INFO
2007-12-13 Name : The remote SuSE 10 host is missing a security-related patch.
File : suse_libsoup-2501.nasl - Type : ACT_GATHER_INFO
2007-11-10 Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-411-1.nasl - Type : ACT_GATHER_INFO
2007-10-17 Name : The remote openSUSE host is missing a security update.
File : suse_libsoup-2503.nasl - Type : ACT_GATHER_INFO
2007-02-18 Name : The remote Mandrake Linux host is missing one or more security updates.
File : mandrake_MDKSA-2007-029.nasl - Type : ACT_GATHER_INFO
2007-02-09 Name : The remote Fedora Core host is missing a security update.
File : fedora_2007-109.nasl - Type : ACT_GATHER_INFO
2007-01-17 Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1248.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

Source Url
BID http://www.securityfocus.com/bid/22034
CONFIRM http://ftp.gnome.org/pub/gnome/sources/libsoup/2.2/libsoup-2.2.99.news
https://issues.rpath.com/browse/RPL-965
DEBIAN http://www.debian.org/security/2007/dsa-1248
FEDORA http://fedoranews.org/cms/node/2509
MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2007:029
OSVDB http://osvdb.org/31667
SECUNIA http://secunia.com/advisories/23734
http://secunia.com/advisories/23770
http://secunia.com/advisories/23871
http://secunia.com/advisories/23873
http://secunia.com/advisories/23961
http://secunia.com/advisories/23976
UBUNTU http://www.ubuntu.com/usn/usn-411-1
VUPEN http://www.vupen.com/english/advisories/2007/0173
XF https://exchange.xforce.ibmcloud.com/vulnerabilities/31519

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
Date Informations
2021-05-04 12:04:51
  • Multiple Updates
2021-04-22 01:05:27
  • Multiple Updates
2020-05-23 00:18:42
  • Multiple Updates
2017-07-20 09:24:00
  • Multiple Updates
2016-06-28 16:00:20
  • Multiple Updates
2016-04-26 15:17:43
  • Multiple Updates
2014-02-17 10:37:52
  • Multiple Updates
2013-05-11 11:14:10
  • Multiple Updates