Denial of Service Vulnerability in Fail2ban by Faill2ban
CVE-2009-0362

Currently unrated

Key Information:

Vendor

Fail2ban

Status
Fail2ban
Vendor
CVE Published:
13 February 2009

What is CVE-2009-0362?

Fail2ban version 0.8.3 is susceptible to a denial of service due to an incorrect regular expression configuration in the filter.d/wuftpd.conf file. Attackers can exploit this vulnerability by sending crafted reverse-resolved DNS names. If the rhost entry contains a substring that is interpreted as an IP address, it can lead to forced authentication failures, disrupting service availability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://secunia.com/advisories/33890
third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/33734
vdb-entryx_refsource_BID
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=514163
x_refsource_CONFIRM

Timeline

  • Vulnerability Reserved

  • Vulnerability published

JSON
.