Published: 05/09/2002 Updated: 08/12/2016

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

VMScore: 187

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P

xinetd 2.3.4 leaks file descriptors for the signal pipe to services that are launched by xinetd, which could allow those services to cause a denial of service via the pipe.

Vulnerable Product	Search on Vulmon	Subscribe to Product
xinetd xinetd 2.3.5
xinetd xinetd 2.3.6
xinetd xinetd 2.3.4

Solar Designer found a vulnerability in xinetd, a replacement for the BSD derived inetd File descriptors for the signal pipe introduced in version 234 are leaked into services started from xinetd The descriptors could be used to talk to xinetd resulting in crashing it entirely This is usually called a denial of service This problem has been f ...

NVD-CWE-Other http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-053.php http://www.redhat.com/support/errata/RHSA-2002-196.html http://www.redhat.com/support/errata/RHSA-2003-228.html http://www.iss.net/security_center/static/9844.php http://www.securityfocus.com/bid/5458 http://marc.info/?l=bugtraq&m=102935383506155&w=2 https://www.debian.org/security/2002/dsa-151 https://nvd.nist.gov https://www.debian.org/security/./dsa-151

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2002-0871

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect