The ip_evictor function in ip_fragment.c in libnids prior to 1.24, as used in dsniff and possibly other products, allows remote malicious users to cause a denial of service (NULL pointer dereference and crash) via crafted fragmented packets.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
libnids project libnids |
||
fedoraproject fedora 11 |
||
fedoraproject fedora 12 |
||
fedoraproject fedora 13 |