CVE-2007-6437 : Balabit syslog-ng 2.0.x before 2.0.6 and 2.1.x before 2.1.8 allows remote attack

Balabit syslog-ng 2.0.x before 2.0.6 and 2.1.x before 2.1.8 allows remote attackers to cause a denial of service (crash) via a message with a timestamp that does not contain a trailing space, which triggers a NULL pointer dereference.

Published 2007-12-19 21:46:00

Updated 2025-04-09 00:30:58

Source MITRE

View at NVD, CVE.org

Vulnerability category: Memory CorruptionDenial of service

Products affected by CVE-2007-6437

Balabit » Syslog-ng Open Source Edition
Versions up to, including, (<=) 2.0.6
cpe:2.3:a:balabit:syslog-ng_open_source_edition:*:*:*:*:*:*:*:*
Matching versions
Balabit » Syslog-ng Premium Edition
Versions up to, including, (<=) 2.1.8
cpe:2.3:a:balabit:syslog-ng_premium_edition:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2007-6437

EPSS FAQ

5.18%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 89 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2007-6437

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:N/A:P	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial

CWE ids for CVE-2007-6437

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2007-6437

https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00610.html

[SECURITY] Fedora 7 Update: syslog-ng-2.0.7-1.fc7
http://www.securityfocus.com/archive/1/485181/100/0/threaded
https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00606.html

[SECURITY] Fedora 8 Update: syslog-ng-2.0.7-1.fc8
http://www.debian.org/security/2008/dsa-1464

[SECURITY] [DSA 1464-1] New syslog-ng packages fix denial of service
http://secunia.com/advisories/28279

About Secunia Research | Flexera
http://security.gentoo.org/glsa/glsa-200712-19.xml

Syslog-ng: Denial of service (GLSA 200712-19) — Gentoo security
https://exchange.xforce.ibmcloud.com/vulnerabilities/39082

syslog-ng timestamp denial of service CVE-2007-6437 Vulnerability Report
https://bugzilla.redhat.com/show_bug.cgi?id=426173

426173 – (CVE-2007-6437) CVE-2007-6437 syslog-ng crash by message with invalid timestamp separator
http://seclists.org/bugtraq/2007/Dec/0202.html

Bugtraq: ZSA-2007-029: syslog-ng Denial of Service
http://secunia.com/advisories/28483

About Secunia Research | Flexera
http://secunia.com/advisories/28118

About Secunia Research | Flexera
Vendor Advisory
http://www.osvdb.org/39551

404 Not Found
http://www.securityfocus.com/bid/26897
http://www.vupen.com/english/advisories/2007/4257

Site en construction
http://secunia.com/advisories/28372

About Secunia Research | Flexera
http://securitytracker.com/id?1019105

Access Denied

Jump to

Vulnerability Details : CVE-2007-6437

Products affected by CVE-2007-6437

Exploit prediction scoring system (EPSS) score for CVE-2007-6437

CVSS scores for CVE-2007-6437

CWE ids for CVE-2007-6437

References for CVE-2007-6437