CVE

Id
38122  
CVE No.
CVE-2009-0687  
Status
Candidate  
Description
The pf_test_rule function in OpenBSD Packet Filter (PF), as used in OpenBSD 4.2 through 4.5, NetBSD 5.0 before RC3, MirOS 10 and earlier, and MidnightBSD 0.3-current allows remote attackers to cause a denial of service (panic) via crafted IP packets that trigger a NULL pointer dereference during translation, related to an IPv4 packet with an ICMPv6 payload.  
Phase
Assigned (20090222)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
414504 38122 CVE-2009-0687 BUGTRAQ:20090413 OpenBSD 4.3 up to OpenBSD-current: PF null pointer dereference - remote DoS (kernel panic)  View
414505 38122 CVE-2009-0687 URL:http://www.securityfocus.com/archive/1/502634  View
414506 38122 CVE-2009-0687 MILW0RM:8406  View
414507 38122 CVE-2009-0687 URL:http://www.milw0rm.com/exploits/8406  View
414508 38122 CVE-2009-0687 MILW0RM:8581  View
414509 38122 CVE-2009-0687 URL:http://www.milw0rm.com/exploits/8581  View
414510 38122 CVE-2009-0687 MISC:ftp://ftp.openbsd.org/pub/OpenBSD/patches/4.3/common/013_pf.patch  View
414511 38122 CVE-2009-0687 MISC:http://www.helith.net/txt/multiple_vendor-PF_null_pointer_dereference.txt  View
414512 38122 CVE-2009-0687 NETBSD:NetBSD-SA2009-001  View
414513 38122 CVE-2009-0687 URL:http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2009-001.txt.asc  View
414514 38122 CVE-2009-0687 OPENBSD:[4.3] 013: RELIABILITY FIX: April 11, 2009  View
414515 38122 CVE-2009-0687 URL:http://www.openbsd.org/errata43.html#013_pf  View
414516 38122 CVE-2009-0687 OPENBSD:[4.4] 013: RELIABILITY FIX: April 11, 2009  View
414517 38122 CVE-2009-0687 URL:http://www.openbsd.org/errata44.html#013_pf  View
414518 38122 CVE-2009-0687 OPENBSD:[4.5] 002: RELIABILITY FIX: April 11, 2009  View
414519 38122 CVE-2009-0687 URL:http://www.openbsd.org/errata45.html#002_pf  View
414520 38122 CVE-2009-0687 OSVDB:53608  View
414521 38122 CVE-2009-0687 URL:http://www.osvdb.org/53608  View
414522 38122 CVE-2009-0687 VUPEN:ADV-2009-1015  View
414523 38122 CVE-2009-0687 URL:http://www.vupen.com/english/advisories/2009/1015  View
414524 38122 CVE-2009-0687 XF:openbsd-packetfilter-dos(49837)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
42253 JVNDB-2009-003260 Foxit JPEG2000/JBIG2 Decoder アドオンにおけるサービス運用妨害 (DoS) の脆弱性 Foxit JPEG2000/JBIG2 Decoder アドオンは、JPEG2000 のヘッダのデコード時に致命的なエラーを適切に処理しないため、サービス運用妨害 (メモリの破損およびアプリケーションクラッシュ) 状態となる、および任意のコードを実行される脆弱性が存在します。 CVE-2009-0691 38122 9.3 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-003260.html  View