Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0314

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2000-0314
Last Modified 05 Sep 2008 04:20:41
Published 12 Mar 2001 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2000-0314

Summary

traceroute in NetBSD 1.3.3 and Linux systems allows local users to flood other systems by providing traceroute with a large waittime (-w) option, which is not parsed properly and sets the time delay for sending packets to zero.

Vulnerable Systems

Operating System

  • Debian Linux 2.0.34

  • Digital Unix 4.0

  • Netbsd 1.3.3

  • Redhat Linux 2.0.34

  • Slackware Linux 2.0.34


References

NETBSD - NetBSD-SA1999-004

BUGTRAQ - 19990213 traceroute as a flooder

OSVDB - 7574


Last Updated: 27 May 2016 10:35:40