Family: Denial of Service --> Category: infos
cfengine AuthenticationDialogue vulnerability Vulnerability Scan
Vulnerability Scan Summary
check for cfengine flaw based on its version
Detailed Explanation for this Vulnerability Test
Cfengine is running on this remote host.
cfengine cfservd is reported prone to a remote heap-based buffer
The vulnerability presents itself in the cfengine cfservd
AuthenticationDialogue() function. The issue exists due to a lack of
sufficient boundary checks performed on challenge data that is
received from a client.
In addition, cfengine cfservd is reported prone to a remote denial of
service vulnerability. The vulnerability presents itself in the
cfengine cfservd AuthenticationDialogue() function which is
responsible for processing SAUTH commands and also performing RSA
based authentication. The vulnerability presents itself because
return values for several statements within the
AuthenticationDialogue() function are not checked.
Solution: Upgrade to 2.1.8 or newer.
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.