BlueCat Networks Adonis DNS/DHCP Appliance XHA 服务拒绝漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1189569 漏洞类型 未知
发布时间 2007-08-07 更新时间 2007-08-07
CVE编号 CVE-2007-4205 CNNVD-ID CNNVD-200708-060
漏洞平台 N/A CVSS评分 7.1
|漏洞来源
https://www.securityfocus.com/bid/85463
https://cxsecurity.com/issue/WLB-2007080045
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200708-060
|漏洞详情
BlueCatNetworksAdonisDNS/DHCPAppliance5.0.2.8版本上的XHA(Linux-HA)允许远程攻击者可以借助对端口694的一个UDP信息包,造成拒绝服务(心跳控制程序崩溃)。注意:该漏洞可能与CVE-2006-3121相同。
|漏洞EXP
In response to this security advisory, BlueCat would like to post the following:

BlueCat acknowledges the existence of this issue and our testing indicates that a temporary outage may result from this Denial of Service attack.  System monitoring tools will alert the Adonis administrator of this issue immediately so that normal service can be reestablished with minimal impact.  We have confirmed that there is no persistent damage to the system as a result of this attack and the attack will not compromise any settings or information on the Adonis systems.

BlueCat is taking the following steps to address this issue:
1. Release a patch that will modify the firewall rules to restrict all traffic on port 694 to the cluster partner. The patch should be available later today - Friday, August 3rd.

2. Update the version of the Heartbeat software to address this issue permanently.  This patch will be made available later this month.

To reduce the risk of this DoS attack, BlueCat recommends that customers check their firewall/router settings to ensure that UDP port 694 is closed. Since HA cluster partners must operate on the same subnet, there is no reason that any traffic on this port is required except between the cluster partners themselves.

For any BlueCat customer that wishes to obtain the patch, or seek more information on the matter, please feel free to contact BlueCat Network's Customer Care at 1.866.491.2228.

Kindest regards,
Branko Miskov
Director of Product Management
BlueCat Networks Inc.
|受影响的产品
Linux-HA heartbeat 1.2.4
|参考资料

来源:BUGTRAQ
名称:20070803Re:TS-2007-001-0:BlueCatNetworksAdonisLinux-HAheartbeatDoSVulnerability
链接:http://www.securityfocus.com/archive/1/archive/1/475455/100/0/threaded
来源:BUGTRAQ
名称:20070729TS-2007-001-0:BlueCatNetworksAdonisLinux-HAheartbeatDoSVulnerability
链接:http://www.securityfocus.com/archive/1/archive/1/475065/100/0/threaded
来源:VUPEN
名称:ADV-2007-2767
链接:http://www.frsirt.com/english/advisories/2007/2767
来源:SECTRACK
名称:1018505
链接:http://securitytracker.com/id?1018505
来源:SECUNIA
名称:26265
链接:http://secunia.com/advisories/26265
来源:OSVDB
名称:39396
链接:http://osvdb.org/39396
来源:SREASON
名称:2978
链接:http://securityreason.com/securityalert/2978