efFingerD Malformed Packet DoS

2004-05-10T03:43:17
ID OSVDB:5992
Type osvdb
Reporter Dr_insane(dr_insane@pathfinder.gr)
Modified 2004-05-10T03:43:17

Description

Vulnerability Description

efFingerD contains a flaw that may allow a remote denial of service. The issue is triggered by sending a malformed packet containing only a single byte of data, and will result in loss of availability for the daemon.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, dr_insane has released a patch to address this vulnerability.

Short Description

efFingerD contains a flaw that may allow a remote denial of service. The issue is triggered by sending a malformed packet containing only a single byte of data, and will result in loss of availability for the daemon.

References:

Vendor URL: https://sourceforge.net/projects/effingerd/ Secunia Advisory ID:11573 Related OSVDB ID: 5991 Other Solution URL: http://members.lycos.co.uk/r34ct/main/fixes/effingerd/binary/ Other Solution URL: http://members.lycos.co.uk/r34ct/main/fixes/effingerd/source/ Other Advisory URL: http://members.lycos.co.uk/r34ct/main/efFingerD.txt CVE-2004-2273