CVE-2000-0489

Freebsd - Denial of Service

Title source: rule

Description

FreeBSD, NetBSD, and OpenBSD allow an attacker to cause a denial of service by creating a large number of socket pairs using the socketpair function, setting a large buffer size via setsockopt, then writing large buffers.

Exploits (1)

exploitdb WORKING POC VERIFIED

by L. Sassaman · cdosbsd

https://www.exploit-db.com/exploits/19488

View Code ZIP pw:eip

References (4)

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/3298

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/622

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/templates/archive.pike?list=1&msg=NCBBKFKDOLAGKIAPMILPCEJLCEAA.labs%40ussrback.com

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.10.9908270039010.16315-100000%40thetis.deor.org

Scores

EPSS 0.0105

EPSS Percentile 77.6%

Details

Status published

Products (14)

freebsd/freebsd 3.0

freebsd/freebsd 3.1

freebsd/freebsd 3.2

freebsd/freebsd 3.3

freebsd/freebsd 3.4

freebsd/freebsd 3.5

freebsd/freebsd 4.0

freebsd/freebsd 5.0 alpha

netbsd/netbsd 1.4

netbsd/netbsd 1.4.1 (4 CPE variants)

... and 4 more

Published Sep 05, 1999

Tracked Since Feb 18, 2026