VYPR
Unrated severityNVD Advisory· Published Dec 20, 2006· Updated Jun 16, 2026

CVE-2006-6653

CVE-2006-6653

Description

The accept function in NetBSD-current before 20061023, NetBSD 3.0 and 3.0.1 before 20061024, and NetBSD 2.x before 20061029 allows local users to cause a denial of service (socket consumption) via an invalid (1) name or (2) namelen parameter, which may result in the socket never being closed (aka "a dangling socket").

Affected products

5
  • NetBSD/NetBSD5 versions
    cpe:2.3:o:netbsd:netbsd:2.0:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:o:netbsd:netbsd:2.0:*:*:*:*:*:*:*
    • cpe:2.3:o:netbsd:netbsd:3.0:*:*:*:*:*:*:*
    • cpe:2.3:o:netbsd:netbsd:3.0.1:*:*:*:*:*:*:*
    • cpe:2.3:o:netbsd:netbsd:current:*:*:*:*:*:*:*
    • (no CPE)range: NetBSD-current before 20061023, NetBSD 3.0/3.0.1 before 20061024, NetBSD 2.x before 20061029

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.