CVE-2002-0574

Freebsd < 4.5 - Memory Leak

Title source: rule

Description

Memory leak in FreeBSD 4.5 and earlier allows remote attackers to cause a denial of service (memory exhaustion) via ICMP echo packets that trigger a bug in ip_output() in which the reference count for a routing table entry is not decremented, which prevents the entry from being removed.

References (4)

[Broken Link, Patch, Vendor Advisory] ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:21.tcpip.asc

[Broken Link] http://www.iss.net/security_center/static/8893.php

[Broken Link] http://www.osvdb.org/5232

[Broken Link, Patch, Third Party Advisory, VDB Entry, Vendor Advisory] http://www.securityfocus.com/bid/4539

Scores

EPSS 0.0110

EPSS Percentile 77.8%

Classification

CWE

CWE-401

Status draft

Affected Products (1)

freebsd/freebsd < 4.5

Timeline

Published Jul 03, 2002

Tracked Since Feb 18, 2026