SGI IRIX nsd cache size denial of service
|irix-nsd-cache-dos (7907)||Medium Risk|
SGI IRIX is vulnerable to a denial of service attack, caused by a vulnerability in the nsd (name service daemon) cache-limiting function. This vulnerability could allow a remote attacker to cause the nsd cache to increase in size until all available storage space is exhausted.
Denial of Service
Upgrade to the latest version of SGI IRIX (6.5.14 or later), as listed in SGI Security Advisory 20020102-02-I. See References.
— OR —
Apply the patch for this vulnerability, as listed in SGI Security Advisory 20020102-02-I. See References.
- SGI Security Advisory 20020102-01-I: IRIX nsd vulnerability.
- SGI Security Advisory 20020102-02-I: IRIX nsd vulnerability.
- SGI Security Advisory 20020102-03-P: IRIX nsd vulnerability.
- BID-3882: IRIX nsd Cache Limit Denial of Service Attack
- CVE-2002-0038: Vulnerability in the cache-limiting function of the unified name service daemon (nsd) in IRIX 6.5.4 through 6.5.11 allows remote attackers to cause a denial of service by forcing the cache to fill the disk.
- OSVDB ID: 2027: IRIX nsd Cache Limit DoS
- SGI IRIX 6.5.10
- SGI IRIX 6.5.11
- SGI IRIX 6.5.4
- SGI IRIX 6.5.5
- SGI IRIX 6.5.6
- SGI IRIX 6.5.7
- SGI IRIX 6.5.8
- SGI IRIX 6.5.9
Jan 15, 2002
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email ignore thisxforceignore this@ignore thisus.ignore thisibm.comignore this