CVE-2000-0489

CVSS 2.0 Score 2.1 of 10 (low)

Details

Published Sep 5, 1999

Updated: Nov 20, 2024

Summary

CVE-2000-0489 refers to a denial-of-service vulnerability affecting FreeBSD, NetBSD, and OpenBSD operating systems. An attacker can exploit this flaw by creating a vast number of socket pairs using the socketpair function and setting a large buffer size via setsockopt. Subsequently, the attacker writes large buffers to these sockets, leading to an excessive consumption of system resources and ultimately causing a denial-of-service condition.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

FreeBSD
OpenBSD

Affected Vendors

OpenBSD Project
FreeBSD Project

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NEUHaO
https://www.cve.org/CVERecord?id=CVE-2000-0489
https://nvd.nist.gov/vuln/detail/CVE-2000-0489

Back to Vulnerability Database