|
Family: Denial of Service --> Category: flood
stream.c Vulnerability Scan
Vulnerability Scan Summary Crashes the remote host using the 'stream' attack
Detailed Explanation for this Vulnerability Test
It seems it was possible to make the remote server crash
using the 'stream' (or 'raped') attack.
A possible hacker may use this flaw to shut down this server, thus preventing
your network from working properly.
Solution : contact your operating system vendor for a patch.
Workaround : if you use IP filter,
then add these rules :
block in quick proto tcp from any to any head 100
pass in quick proto tcp from any to any flags S keep state group 100
pass in all
Reference : http://online.securityfocus.com/archive/1/42729
Reference : http://online.securityfocus.com/archive/1/42723
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|