CVE-2009-0687
CVE-2009-0687
The pf_test_rule function in OpenBSD Packet Filter (PF), as used in OpenBSD 4.2 through 4.5, NetBSD 5.0 before RC3, MirOS 10 and earlier, and MidnightBSD 0.3-current allows remote attackers to cause a denial of service (panic) via crafted IP packets that trigger a NULL pointer dereference during translation, related to an IPv4 packet with an ICMPv6 payload.
Affected products
n/a · n/apublic PoCs found — 3
cve_referencewww.exploit-db.com/exploits/8581unverifiedexploitdbwww.exploit-db.com/exploits/8430unverifiedcve_referencewww.exploit-db.com/exploits/8406unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
ftp://ftp.openbsd.org/pub/OpenBSD/patches/4.3/common/013_pf.patchhttp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2009-001.txt.aschttps://exchange.xforce.ibmcloud.com/vulnerabilities/49837https://www.exploit-db.com/exploits/8406https://www.exploit-db.com/exploits/8581http://www.helith.net/txt/multiple_vendor-PF_null_pointer_dereference.txthttp://www.openbsd.org/errata43.html#013_pfhttp://www.openbsd.org/errata44.html#013_pfhttp://www.openbsd.org/errata45.html#002_pfhttp://www.osvdb.org/53608http://www.securityfocus.com/archive/1/502634http://www.vupen.com/english/advisories/2009/1015