OpenBSD Portmap Remote Denial Of Service Vulnerability Network Vulnerability

Summary

This host is running portmap and is prone to denial of service vulnerability.

Impact

Successful exploitation will allow attackers to cause denial of service condition. Impact Level: Application

Solution

Apply the patch provided by vendor. For updates refer to http://www.openbsd.org/index.html

Insight

The flaw is due to an error when handling multiple RPC requests and can be exploited to crash the portmap daemon via specially crafted packets sent to TCP port 111.

Affected

OpenBSD version 5.2 and prior

References

http://archives.neohapsis.com/archives/fulldisclosure/2012-11/0169.html
http://osvdb.org/87859
http://seclists.org/fulldisclosure/2012/Nov/168
http://secunia.com/advisories/51299/
http://www.securelist.com/en/advisories/51299
http://www.securitytracker.com/id/1027814

Updated on 2015-03-25

Severity

Classification

CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Apple iTunes Multiple Vulnerabilities
ClamAV Hash Manager Off-By-One Denial of Service Vulnerability (Win)
Firefox Browser Libxul Memory Leak Remote DoS Vulnerability - Win
Apple Safari WebKit Property Memory Leak Remote DoS Vulnerability
Freefloat FTP Server 'ALLO' Command Remote Buffer Overflow Vulnerability

OpenBSD Portmap Remote Denial of Service Vulnerability

Take action and discover your vulnerabilities