OpenSLP 'SLPDProcessMessage()' Function Double Free Denial of Service Vulnerability

Bugtraq ID: 76635
Class: Failure to Handle Exceptional Conditions
CVE: CVE-2015-5177
Remote: Yes
Local: No
Published: Aug 06 2015 12:00AM
Updated: Dec 08 2015 10:06PM
Credit: Qinghao Tang of QIHU 360
Vulnerable: Ubuntu Ubuntu Linux 12.04 LTS i386
Ubuntu Ubuntu Linux 12.04 LTS amd64
OpenSLP OpenSLP 1.2.1
Debian Linux 6.0 sparc
Debian Linux 6.0 s/390
Debian Linux 6.0 powerpc
Debian Linux 6.0 mips
Debian Linux 6.0 ia-64
Debian Linux 6.0 ia-32
Debian Linux 6.0 arm
Debian Linux 6.0 amd64
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus