Back to search
CVE-2006-1624
Published: Apr 5, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
The default configuration of syslogd in the Linux sysklogd package does not enable the -x (disable name lookups) option, which allows remote attackers to cause a denial of service (traffic amplification) via messages with spoofed source IP addresses.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20060331 DoS-ing sysklogd?
mailing-list
x_refsource_BUGTRAQ
20060402 RE: DoS-ing sysklogd?
mailing-list
x_refsource_BUGTRAQ
sysklogd-sourceip-dos(25672)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now