OSVDB ID: 6130

Title: OpenBSD ping Local Overflow

Info

Disclosure

Feb 23, 1999

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

A local overflow exists in OpenBSD. The ping command fails to handle oversized ICMP packets resulting in a buffer overflow. With a specially crafted request, an attacker could cause unauthorized access resulting in a loss of confidentiality and/or integrity. No further details have been provided.

Classification

Location: Local Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, OpenBSD has released a patch to address this vulnerability.

Products

OpenBSD

OpenBSD

2.4

References

Credit

Unknown or Incomplete



Direct URL: http://osvdb.org/6130