Info

Disclosure

Jul 30, 2006

Discovery

Unknown

Dates

Exploit

Jul 30, 2006

Solution

Unknown

Description

BomberClone contains a flaw that may allow a malicious user to cause a denial of service. The issue is triggered when sending a specially crafted packet that is processed and used incorrectly in a memcpy function. Due to a big-endian check bypass it is possible that the flaw may cause a NULL dereference or overwrite of parts of the memory resulting in a loss availability.

Classification

Location: Remote/Network Access Required
Attack Type: Denial of Service, Input Manipulation
Impact: Loss of Availability
Exploit: Exploit Available

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

BomberClone

0.11.6

References

Bugtraq ID: 19255
CVE ID: 2006-4005 (see also: NVD)
Secunia Advisory ID: 21303 21985
Related OSVDB ID: 27648 27649
Other Advisory URL: http://aluigi.altervista.org/adv/bcloneboom-adv.txt
Generic Exploit URL: http://aluigi.org/poc/bcloneboom.zip
Vendor URL: http://bomberclone.de/
Vendor Specific Advisory URL: http://www.us.debian.org/security/2006/dsa-1180

Credit

Luigi Auriemma - aluigialtervista.org - http://aluigi.altervista.org

Direct URL: http://osvdb.org/36218