Linux Kernel Firewall Logging Rules Denial of Service Vulnerability
Secunia Advisory: SA11202Release Date: 2004-10-21
Critical:
Moderately critical
Impact: DoS
Where: From remote
Solution Status: Vendor Patch
OS: Linux Kernel 2.6.x
CVE reference: CVE-2004-0816
Description:
Richard Hart has reported a vulnerability in the Linux Kernel, which can be exploited by malicious people to cause a DoS (Denial of Service).
The vulnerability is caused due to an integer underflow error within the iptables firewall logging rules. This can be exploited to crash a vulnerable system via a specially crafted IP packet.
Successful exploitation requires that firewalling is enabled.
Solution:
Update to version 2.6.8 or later.
http://kernel.org/
Provided and/or discovered by:
Richard Hart
Original Advisory:
http://www.suse.de/de/security/2004_37_kernel.html