Описание
The default configuration of syslogd in the Linux sysklogd package does not enable the -x (disable name lookups) option, which allows remote attackers to cause a denial of service (traffic amplification) via messages with spoofed source IP addresses.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | not-affected | network listening disabled by default |
| devel | not-affected | network listening disabled by default |
| edgy | not-affected | network listening disabled by default |
| feisty | not-affected | network listening disabled by default |
| upstream | needs-triage |
Показывать по
Ссылки на источники
EPSS
7.8 High
CVSS2
Связанные уязвимости
The default configuration of syslogd in the Linux sysklogd package does not enable the -x (disable name lookups) option, which allows remote attackers to cause a denial of service (traffic amplification) via messages with spoofed source IP addresses.
The default configuration of syslogd in the Linux sysklogd package doe ...
The default configuration of syslogd in the Linux sysklogd package does not enable the -x (disable name lookups) option, which allows remote attackers to cause a denial of service (traffic amplification) via messages with spoofed source IP addresses.
EPSS
7.8 High
CVSS2