Secunia
Login
|
|
CVE Reference: CVE-2009-0758 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2009-0758 |
|
|
Description: The originates_from_local_legacy_unicast_socket function in avahi-core/server.c in avahi-daemon 0.6.23 does not account for the network byte order of a port number when processing incoming multicast packets, which allows remote attackers to cause a denial of service (network bandwidth and CPU consumption) via a crafted legacy unicast mDNS query packet that triggers a multicast packet storm. |
|
|
CVE Status: Candidate |
|
|
References: SUSE http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00000.html SAID Secunia Advisory: SA38420 MLIST http://www.openwall.com/lists/oss-security/2009/03/02/1 MISC http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=517683 MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2009:076 DEBIAN http://www.debian.org/security/2010/dsa-2086 BID 33946 |
|
| Return to the previous page. |
