Title: IPRoute Fragmented Packets Denial Of Service Vulnerability
Severity: HIGH
Description:
IPRoute is a software package designed as a dropin router solution for a PC. It was originally written by David Mischler.
A problem in the software could allow remote users to crash IPRoute routers. The problem is due to the handling of fragmented IP packets.
When an IPRoute system is scanned using fragmented IP packets that split the tcp header, the router does not properly handle their input. Instead, once IPRoute receives the packets from a host, IPRoute crashes, requiring a manual restart to resume service.
This problem makes it possible for a remote user to deny service to users of IPRoute.
Affected Products:
- David Mischler IPRoute 0.973.0
- David Mischler IPRoute 0.974.0
- David Mischler IPRoute 1.10.0
- David Mischler IPRoute 1.18.0
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
