The default configuration of syslogd in the Linux sysklogd package does not enable the -x (disable name lookups) option, which allows remote attackers to cause a denial of service (traffic amplification) via messages with spoofed source IP addresses.
CPE | Name | Operator | Version |
---|---|---|---|
linux_kernel | eq | 2.6.20.1 |