The default configuration of syslogd in the Linux sysklogd package does not enable the -x (disable name lookups) option, which allows remote malicious users to cause a denial of service (traffic amplification) via messages with spoofed source IP addresses.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linux linux kernel 2.6.20.1 |