Executive Summary

Informations
NameCVE-2018-6918First vendor Publication2018-04-04
VendorCveLast vendor Modification2019-10-02

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:C)
Cvss Base Score7.8Attack RangeNetwork
Cvss Impact Score6.9Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p9, 10.4-STABLE, 10.4-RELEASE-p8 and 10.3-RELEASE-p28, the length field of the ipsec option header does not count the size of the option header itself, causing an infinite loop when the length is zero. This issue can allow a remote attacker who is able to send an arbitrary packet to cause the machine to crash.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6918

CPE : Common Platform Enumeration

TypeDescriptionCount
Os125

Nessus® Vulnerability Scanner

DateDescription
2018-04-06Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_c0c5afef38db11e88b7fa4badb2f469b.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/103666
BUGTRAQ https://seclists.org/bugtraq/2019/May/77
CONFIRM https://support.apple.com/kb/HT210090
https://support.apple.com/kb/HT210091
FREEBSD https://security.FreeBSD.org/advisories/FreeBSD-SA-18:05.ipsec.asc
FULLDISC http://seclists.org/fulldisclosure/2019/Jun/6
SECTRACK http://www.securitytracker.com/id/1040628

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
DateInformations
2019-10-03 09:21:26
  • Multiple Updates
2019-06-12 00:18:54
  • Multiple Updates
2019-05-31 21:19:45
  • Multiple Updates
2019-05-31 09:18:55
  • Multiple Updates
2018-05-25 00:19:57
  • Multiple Updates
2018-04-07 09:19:38
  • Multiple Updates
2018-04-06 09:19:13
  • Multiple Updates
2018-04-04 21:19:44
  • First insertion