QwikSec

Security Database

CVE

CWE

Training

CVE-2009-0687

Published: Aug 11, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

The pf_test_rule function in OpenBSD Packet Filter (PF), as used in OpenBSD 4.2 through 4.5, NetBSD 5.0 before RC3, MirOS 10 and earlier, and MidnightBSD 0.3-current allows remote attackers to cause a denial of service (panic) via crafted IP packets that trigger a NULL pointer dereference during translation, related to an IPv4 packet with an ICMPv6 payload.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vdb-entry

x_refsource_OSVDB

[4.3] 013: RELIABILITY FIX: April 11, 2009

vendor-advisory

x_refsource_OPENBSD

NetBSD-SA2009-001

vendor-advisory

x_refsource_NETBSD

exploit

x_refsource_EXPLOIT-DB

openbsd-packetfilter-dos(49837)

vdb-entry

x_refsource_XF

http://www.helith.net/txt/multiple_vendor-PF_null_pointer_dereference.txt

x_refsource_MISC

20090413 OpenBSD 4.3 up to OpenBSD-current: PF null pointer dereference - remote DoS (kernel panic)

mailing-list

x_refsource_BUGTRAQ

exploit

x_refsource_EXPLOIT-DB

[4.4] 013: RELIABILITY FIX: April 11, 2009

vendor-advisory

x_refsource_OPENBSD

vdb-entry

x_refsource_VUPEN

[4.5] 002: RELIABILITY FIX: April 11, 2009

vendor-advisory

x_refsource_OPENBSD

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.