OpenBSD Portmap Remote Denial Of Service Vulnerability Network Vulnerability

Summary

This host is running portmap and is prone to denial of service vulnerability.

Impact

Successful exploitation will allow attackers to cause denial of service condition. Impact Level: Application

Solution

Apply the patch provided by vendor. For updates refer to http://www.openbsd.org/index.html

Insight

The flaw is due to an error when handling multiple RPC requests and can be exploited to crash the portmap daemon via specially crafted packets sent to TCP port 111.

Affected

OpenBSD version 5.2 and prior

References

http://archives.neohapsis.com/archives/fulldisclosure/2012-11/0169.html
http://osvdb.org/87859
http://seclists.org/fulldisclosure/2012/Nov/168
http://secunia.com/advisories/51299/
http://www.securelist.com/en/advisories/51299
http://www.securitytracker.com/id/1027814

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Eggdrop 'ctcpbuf' Remote Denial Of Service Vulnerability
Adobe Acrobat PDF File Denial Of Service Vulnerability
Apache Subversion 'mod_dav_svn' log REPORT Request DoS Vulnerability
Eggdrop Server Module Message Handling Remote Buffer Overflow Vulnerability
CUPS '_cupsImageReadTIFF()' Integer Overflow Vulnerability

OpenBSD Portmap Remote Denial of Service Vulnerability

Take action and discover your vulnerabilities