Computer Security
[EN] securityvulns.ru no-pyccku


Avahi multicast DNS server DoS
Published:17.03.2009
Source:
SecurityVulns ID:9750
Type:remote
Threat Level:
5/10
Description:Resources exhaustions on mDNS packet parsing.
Affected:AVAHI : Avahi 0.6
CVE:CVE-2009-0758 (The originates_from_local_legacy_unicast_socket function in avahi-core/server.c in avahi-daemon 0.6.23 does not account for the network byte order of a port number when processing incoming multicast packets, which allows remote attackers to cause a denial of service (network bandwidth and CPU consumption) via a crafted legacy unicast mDNS query packet that triggers a multicast packet storm.)
Original documentdocumentMANDRIVA, [ MDVSA-2009:076 ] avahi (17.03.2009)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod