PublicDate: 2006-04-29 10:02:00 UTC
Candidate: CVE-2006-2093
References:
 https://ubuntu.com/security/notices/USN-279-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2093
Description:
 Nessus before 2.2.8, and 3.x before 3.0.3, allows user-assisted attackers
 to cause a denial of service (memory consumption) via a NASL script that
 calls split with an invalid sep parameter.  NOTE: a design goal of the NASL
 language is to facilitate sharing of security tests by guaranteeing that a
 script "can not do anything nasty."  This issue is appropriate for CVE only
 if Nessus users have an expectation that a split statement will not use
 excessive memory.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_libnasl: released (2.2.6-0ubuntu3)
edgy_libnasl: released (2.2.6-0ubuntu3)
feisty_libnasl: released (2.2.6-0ubuntu3)
devel_libnasl: released (2.2.6-0ubuntu3)
upstream_libnasl: needs-triage