OpenBSD ARP Request DoS

2003-10-01T09:01:55
ID OSVDB:2251
Type osvdb
Reporter OSVDB
Modified 2003-10-01T09:01:55

Description

Vulnerability Description

OpenBSD contains a flaw that may allow a remote denial of service. The issue is triggered when a local network user to causes a system panic by flooding it with spoofed ARP requests, and will result in loss of availability for the platform.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, OpenBSD has released a patch to address this vulnerability.

Short Description

OpenBSD contains a flaw that may allow a remote denial of service. The issue is triggered when a local network user to causes a system panic by flooding it with spoofed ARP requests, and will result in loss of availability for the platform.

References:

Vendor URL: http://www.openbsd.org/errata33.html#arp Secunia Advisory ID:9948 CVE-2003-0804