Information Security News: Linux Kernel Firewall Logging Rules Denial of Service Vulnerability

Tuesday, October 26, 2004

Linux Kernel Firewall Logging Rules Denial of Service Vulnerability

Secunia Advisory: SA11202
Release Date: 2004-10-21

Critical:
Moderately critical
Impact: DoS
Where: From remote
Solution Status: Vendor Patch

OS: Linux Kernel 2.6.x

CVE reference: CVE-2004-0816

Description:
Richard Hart has reported a vulnerability in the Linux Kernel, which can be exploited by malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to an integer underflow error within the iptables firewall logging rules. This can be exploited to crash a vulnerable system via a specially crafted IP packet.

Successful exploitation requires that firewalling is enabled.

Solution:
Update to version 2.6.8 or later.
http://kernel.org/

Provided and/or discovered by:
Richard Hart

Original Advisory:
http://www.suse.de/de/security/2004_37_kernel.html

<< Home

News from Xnet Solutions about happenings in the Information and Network security world.

Name: Xnet Solutions

Location: Karachi, Sindh, Pakistan

View my complete profile

Xnet Solutions is a manufacturer of Network Appliances: Hardware Firewalls, Mailserver Appliance, Mail Filter Appliance, IP PBX.

Information Security News

Tuesday, October 26, 2004

Linux Kernel Firewall Logging Rules Denial of Service Vulnerability

About Me

Previous Posts