CVE-2002-0574

UNKNOWN

Memory leak in FreeBSD 4

Published Apr 2, 2003

Modified 1 years ago

No fix available

Details

Memory leak in FreeBSD 4.5 and earlier allows remote attackers to cause a denial of service (memory exhaustion) via ICMP echo packets that trigger a bug in ip_output() in which the reference count for a routing table entry is not decremented, which prevents the entry from being removed.

References

ADVISORYftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:21.tcpip.asc WEBhttp://www.iss.net/security_center/static/8893.php WEBhttp://www.osvdb.org/5232 WEBhttp://www.securityfocus.com/bid/4539 ADVISORYhttps://www.cve.org/CVERecord?id=CVE-2002-0574

CVSS Analysis

CVSS v2.0

5.0

Exploitability

Access Vector

NetworkAV:N

Access Complexity

LowAC:L

Authentication

NoneAu:N

Impact

Confidentiality

NoneC:N

Integrity

NoneI:N

Availability

PartialA:P

5/AV:N/AC:L/Au:N/C:N/I:N/A:P

Ecosystems

Timeline

PublishedApr 2, 2003

ModifiedAug 8, 2024