SunOS can be crashed with malformed UDP packets (UDP_Bomb)

About this signature or vulnerability

Proventia Network IPS, RealSecure Desktop Protector 3.6, Proventia Server IPS for Linux technology, IBM Security Server Protection for Windows, Proventia Network MFS, Proventia-G 1.1 and earlier, Proventia Network IDS, Proventia Desktop, BlackICE Agent for Server, RealSecure Guard, RealSecure Sentry, BlackICE PC Protection, BlackICE Server Protection, RealSecure Server Sensor, RealSecure Network, Virtual Server Protection for Vmware:

This signature detects a corrupted UDP frame with an illegal length field. Some older Unix systems will crash when they receive such traffic. This could indicate an attacker's attempt to cause a denial of service.

This signature replaces UDPBomb.

This signature detects a corrupted UDP frame with an illegal length field. Some older Unix systems will crash when they receive such traffic. This could indicate an attacker's attempt to cause a denial of service.

This signature replaces UDPBomb.

Default risk level

 Medium

Sensors that have this signature

Proventia Network IPS: 2.0, RealSecure Desktop Protector 3.6: baseline, RealSecure Desktop: baseline, Proventia Server IPS for Linux technology: 1.0, IBM Security Server Protection for Windows: 1.0.914.0, IBM Security Server Protection for Windows: 2.1.14.2400, Proventia Network MFS: 1.0, Proventia-G 1.1 and earlier: G Series, Proventia Network IDS: A Series, Proventia Desktop: 8.0.614.1, BlackICE Agent for Server: 3.6, RealSecure Guard: 3.6, RealSecure Sentry: 3.6, BlackICE PC Protection: 3.6.cbd, BlackICE Server Protection: 3.6.cbd, RealSecure Server Sensor: 7.0, RealSecure Desktop Protector: 3.6, RealSecure Network: 7.0, Virtual Server Protection for Vmware: 1.0

Systems affected

Sun SunOS: 4.0.3, Sun SunOS: 4.1, Sun SunOS: 4.1.1, Sun SunOS: 4.1.3, Sun SunOS: 4.1.2, Sun SunOS: 4.0.3c, Sun SunOS: 4.1psr_a, Sun SunOS: 4.1.3a1

Type

Denial of Service

Vulnerability description

How to remove this vulnerability

References