CVE-2006-0600 | Vulnerability Database | Aqua Security

elog before 2.5.7 r1558-4 allows remote attackers to cause a denial of service (infinite redirection) via a request with the fail parameter set to 1, which redirects to the same request.

Affected Software

Name	Vendor	Start Version	End Version
Elog_web_logbook	Stefan_ritt	2.0.0 (including)	2.0.0 (including)
Elog_web_logbook	Stefan_ritt	2.0.1 (including)	2.0.1 (including)
Elog_web_logbook	Stefan_ritt	2.0.2 (including)	2.0.2 (including)
Elog_web_logbook	Stefan_ritt	2.0.3 (including)	2.0.3 (including)
Elog_web_logbook	Stefan_ritt	2.0.4 (including)	2.0.4 (including)
Elog_web_logbook	Stefan_ritt	2.0.5 (including)	2.0.5 (including)
Elog_web_logbook	Stefan_ritt	2.1.0 (including)	2.1.0 (including)
Elog_web_logbook	Stefan_ritt	2.1.1 (including)	2.1.1 (including)
Elog_web_logbook	Stefan_ritt	2.1.2 (including)	2.1.2 (including)
Elog_web_logbook	Stefan_ritt	2.1.3 (including)	2.1.3 (including)
Elog_web_logbook	Stefan_ritt	2.2.0 (including)	2.2.0 (including)
Elog_web_logbook	Stefan_ritt	2.2.1 (including)	2.2.1 (including)
Elog_web_logbook	Stefan_ritt	2.2.2 (including)	2.2.2 (including)
Elog_web_logbook	Stefan_ritt	2.2.3 (including)	2.2.3 (including)
Elog_web_logbook	Stefan_ritt	2.2.4 (including)	2.2.4 (including)
Elog_web_logbook	Stefan_ritt	2.4 (including)	2.4 (including)
Elog_web_logbook	Stefan_ritt	2.5 (including)	2.5 (including)
Elog_web_logbook	Stefan_ritt	2.5.6 (including)	2.5.6 (including)

References

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=349528
http://savannah.psi.ch/viewcvs/trunk/src/elogd.c?root=elog\u0026rev=1487\u0026view=diff\u0026r1=1487\u0026r2=1486\u0026p1=trunk/src/elogd.c\u0026p2=/trunk/src/elogd.c
http://secunia.com/advisories/18783
http://www.debian.org/security/2006/dsa-967
http://www.securityfocus.com/bid/16579
https://exchange.xforce.ibmcloud.com/vulnerabilities/24707
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=349528
http://savannah.psi.ch/viewcvs/trunk/src/elogd.c?root=elog\u0026rev=1487\u0026view=diff\u0026r1=1487\u0026r2=1486\u0026p1=trunk/src/elogd.c\u0026p2=/trunk/src/elogd.c
http://secunia.com/advisories/18783
http://www.debian.org/security/2006/dsa-967
http://www.securityfocus.com/bid/16579
https://exchange.xforce.ibmcloud.com/vulnerabilities/24707

NVD	https://nvd.nist.gov/vuln/detail/CVE-2006-0600
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html