Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0489

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2000-0489
Last Modified 10 Sep 2008 03:04:48
Published 05 Sep 1999 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2000-0489

Summary

FreeBSD, NetBSD, and OpenBSD allow an attacker to cause a denial of service by creating a large number of socket pairs using the socketpair function, setting a large buffer size via setsockopt, then writing large buffers.

Vulnerable Systems

Operating System

  • Freebsd 3.0

  • Freebsd 3.1

  • Freebsd 3.2

  • Freebsd 3.3

  • Freebsd 3.4

  • Freebsd 3.5

  • Freebsd 4.0

  • Freebsd 5.0

  • Netbsd 1.4

  • Netbsd 1.4.1

  • Netbsd 1.4.2

  • Openbsd 2.5

  • Openbsd 2.6

  • Openbsd 2.7


References

XF - bsd-setsockopt-dos

BUGTRAQ - 19990826 Local DoS in FreeBSD

BUGTRAQ - 20000601 Local FreeBSD, Openbsd, NetBSD, DoS Vulnerability - Mac OS X affected

BID - 622


Last Updated: 27 May 2016 10:35:44