Skip to content

Denial of Service (DoS) # 2 #81

New issue
New issue
Open
Open
Denial of Service (DoS) # 2#81
@larrycameron80

Description

@larrycameron80
larrycameron80
opened on Sep 17, 2019

Denial of Service (DoS)
Vulnerable module: scapy
Introduced through: scapy@2.4.0
Detailed paths
Introduced through: github/glb-director@github/glb-director#5e1edd0a0fe057320fc30f6ad850c9878c607882 › scapy@2.4.0
Remediation: Upgrade to scapy@2.4.1.
Overview
scapy is a Python-based interactive packet manipulation program and library.

Affected versions of this package are vulnerable to Denial of Service (DoS) due to a lack of input validation when reading the length field in the RADIUS packet’s Attribute Value Pairs (AVP). When Scapy parses a UDP Radius packet that has an AVP with a length byte equal to zero, the getfield function doesn’t shorten the remain value in the while loop.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions