Secunia Security Advisory - A vulnerability has been reported in fprobe, which potentially can be exploited by malicious people to cause a DoS (Denial of Service).
b8800e9c24b142f5e9d91642e25bb5d79904a19b3fec24b33015e78cd154a813
TITLE:
fprobe Weak Hash Functions Denial of Service
SECUNIA ADVISORY ID:
SA14072
VERIFY ADVISORY:
http://secunia.com/advisories/14072/
CRITICAL:
Less critical
IMPACT:
DoS
WHERE:
>From local network
SOFTWARE:
fprobe 1.x
http://secunia.com/product/3947/
DESCRIPTION:
A vulnerability has been reported in fprobe, which potentially can be
exploited by malicious people to cause a DoS (Denial of Service).
The vulnerability is caused due to weak hash implementations for the
xor8, xor16, and crc16 hash functions. This may be exploited to cause
a vulnerable service to consume a large amount of CPU resources by
sending some specially crafted data generating a large amount of hash
collisions.
SOLUTION:
Update to version 1.1.
http://sourceforge.net/project/showfiles.php?group_id=63535
PROVIDED AND/OR DISCOVERED BY:
Reported by vendor.
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed