Denial of Service Flaw in NetBSD 1.4.2 and Earlier
CVE-2000-0440

Currently unrated

Key Information:

Vendor

Netbsd

Status
Netbsd
FreeBSD
Vendor
CVE Published:
1 May 2000

What is CVE-2000-0440?

NetBSD versions up to and including 1.4.2 are susceptible to a denial of service attack caused by the handling of unaligned IP timestamp options. An attacker can exploit this flaw by sending crafted packets that contain these unaligned options, potentially leading the system to panic or crash. This vulnerability highlights the importance of robust validation and handling of network packets to ensure system stability and integrity.

References

http://www.securityfocus.com/bid/1173
vdb-entryx_refsource_BID
ftp://ftp.netbsd.org/pub/NetBSD/misc/security/advisories/...
vendor-advisoryx_refsource_NETBSD
http://archives.neohapsis.com/archives/bugtraq/2000-05/00...
mailing-listx_refsource_BUGTRAQ

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.