solinger bug
Summary:
Denial of service in BIND by improperly closing TCP sessions via so_linger.
CVE:
CVE-1999-0837
Posting date:
08 Nov 1999
Program Impacted:
BIND
Versions affected:
8.1 - 8.2.1
Severity:
Serious
Exploitable:
Remotely Description:
It is possible to remotely cause BIND to "pause" for intervals of up to 120 seconds (an amount determined by the kernel variable SO_LINGER) using an abnormal TCP session.
Workarounds:
In some systems, it is possible to set the system wide SO_LINGER timeout to a lower value, however this may have unexpected consequences with other applications.
Active exploits:
Scripts are available that can implement this attack.
