NetBSD PPPoE Discovery Packet Remote Denial of Service Vulnerability
BID:30838
Info
NetBSD PPPoE Discovery Packet Remote Denial of Service Vulnerability
| Bugtraq ID: | 30838 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2008-3584 |
| Remote: | Yes |
| Local: | No |
| Published: | Aug 26 2008 12:00AM |
| Updated: | May 07 2015 05:24PM |
| Credit: | Yasuoka Masahiko from Internet Initiative Japan Inc. |
| Vulnerable: |
NetBSD NetBSD 3.0.2 NetBSD NetBSD 3.0.1 NetBSD NetBSD Current NetBSD NetBSD 4.0 NetBSD NetBSD 3.1 Navision Financials Server 3.0 |
| Not Vulnerable: | |
Discussion
NetBSD PPPoE Discovery Packet Remote Denial of Service Vulnerability
NetBSD is prone to a remote denial-of-service vulnerability.
An attacker can exploit this issue to crash the affected computer, denying service to legitimate users. Given the nature of this issue, remote code execution may be possible, but this has not been confirmed.
NetBSD is prone to a remote denial-of-service vulnerability.
An attacker can exploit this issue to crash the affected computer, denying service to legitimate users. Given the nature of this issue, remote code execution may be possible, but this has not been confirmed.
Exploit / POC
NetBSD PPPoE Discovery Packet Remote Denial of Service Vulnerability
To exploit this issue, attackers use readily available packet generators.
To exploit this issue, attackers use readily available packet generators.
Solution / Fix
NetBSD PPPoE Discovery Packet Remote Denial of Service Vulnerability
Solution:
Fixes are available in the NetBSD CVS repository. Please see the references for more information.
Solution:
Fixes are available in the NetBSD CVS repository. Please see the references for more information.
References
NetBSD PPPoE Discovery Packet Remote Denial of Service Vulnerability
References:
References:
- NetBSD Homepage (NetBSD)