mbuf vulnerability
Mike Tancsa
mike at sentex.net
Sun Feb 29 16:37:13 PST 2004
In
http://docs.freebsd.org/cgi/mid.cgi?200402260743.IAA18903
it seems RELENG_4 is vulnerable. Is there any work around to a system that
has to have ports open ?
Version: 1 2/18/2004 at 03:47:29 GMT
>Initial report
>
<<https://ialert.idefense.com/KODetails.jhtml?irId=207650>https://ialert.idefense.com/KODetails.jhtml?irId=207650;
>ID#207650:
>FreeBSD Memory Buffer Exhaustion Denial of Service Vulnerability
>(iDEFENSE Exclusive): Remote exploitation of a denial of service (DoS)
>vulnerability in FreeBSD's memory buffers (mbufs) could allow attackers
>to launch a DoS attack.
>
>By sending many out-of-sequence packets, a low bandwidth denial of
>service attack is possible against FreeBSD. When the targeted system
>runs out of memory buffers (mbufs), it is no longer able to accept or
>create new connections.
--------------------------------------------------------------------
Mike Tancsa, tel +1 519 651 3400
Sentex Communications, mike at sentex.net
Providing Internet since 1994 www.sentex.net
Cambridge, Ontario Canada www.sentex.net/mike
More information about the freebsd-security
mailing list