0verkill UDP Datagram Remote Denial of Service Vulnerability
BID:18353
CVE-2006-2971 |Info
0verkill UDP Datagram Remote Denial of Service Vulnerability
| Bugtraq ID: | 18353 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jun 09 2006 12:00AM |
| Updated: | Jun 09 2006 09:41PM |
| Credit: | Federico Fazzi <[email protected]> is credited with the discovery of this issue. |
| Vulnerable: |
0verkill 0verkill 0.16 |
| Not Vulnerable: | |
Discussion
0verkill UDP Datagram Remote Denial of Service Vulnerability
A denial-of-service vulnerability affects 0verkill. This issue is due to the application's failure to properly handle certain UDP datagrams.
The vulnerability allows remote attackers from external networks to crash the application, denying further service to legitimate users.
0verkill version 0.16 is vulnerable to this issue; other versions may also be affected.
A denial-of-service vulnerability affects 0verkill. This issue is due to the application's failure to properly handle certain UDP datagrams.
The vulnerability allows remote attackers from external networks to crash the application, denying further service to legitimate users.
0verkill version 0.16 is vulnerable to this issue; other versions may also be affected.
Exploit / POC
0verkill UDP Datagram Remote Denial of Service Vulnerability
Sample exploit code has been provided:
Sample exploit code has been provided:
Solution / Fix
0verkill UDP Datagram Remote Denial of Service Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]:[email protected]
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]:[email protected]
References
0verkill UDP Datagram Remote Denial of Service Vulnerability
References:
References:
- 0verkill Homepage (0verkill)
- 0verkill 0.6, Remote integer overflow (Federico Fazzi
)