Mcstrans Mcstrans.C Local Denial of Service Vulnerability
BID:26371
Info
Mcstrans Mcstrans.C Local Denial of Service Vulnerability
| Bugtraq ID: | 26371 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2007-4570 |
| Remote: | No |
| Local: | Yes |
| Published: | Nov 07 2007 12:00AM |
| Updated: | Nov 07 2007 10:35PM |
| Credit: | Mark J. Cox is credited with the discovery of this issue. |
| Vulnerable: |
Redhat mcstrans 0.2.3 Redhat Enterprise Linux Desktop 5 client Redhat Enterprise Linux 5 Server |
| Not Vulnerable: | |
Discussion
Mcstrans Mcstrans.C Local Denial of Service Vulnerability
Mcstrans is prone to a local denial-of-service vulnerability because it fails to adequately check user-supplied data.
Successfully exploiting this issue allows local attackers to deny service to legitimate users.
Mcstrans is prone to a local denial-of-service vulnerability because it fails to adequately check user-supplied data.
Successfully exploiting this issue allows local attackers to deny service to legitimate users.
Exploit / POC
Mcstrans Mcstrans.C Local Denial of Service Vulnerability
An attacker can exploit this issue by supplying an arbitrary large range of compartments to the affected daemon.
An attacker can exploit this issue by supplying an arbitrary large range of compartments to the affected daemon.
Solution / Fix
Mcstrans Mcstrans.C Local Denial of Service Vulnerability
Solution:
Red Hat has released an update to address this issue. Please see the referenced advisories for more information.
Solution:
Red Hat has released an update to address this issue. Please see the referenced advisories for more information.
References
Mcstrans Mcstrans.C Local Denial of Service Vulnerability
References:
References: