Vigil@nce: FreeBSD, denial of service via unix socket
December 2010 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/
SYNTHESIS OF THE VULNERABILITY
A local attacker can use several unix sockets, in order to create
a denial of service.
– Severity: 1/4
– Creation date: 29/11/2010
DESCRIPTION OF THE VULNERABILITY
A program can create different socket types: tcp, udp, unix, etc.
When a program using unix sockets ends, the close() function calls
shutdown(). However, when there are too many open resources, a
recursive call stops the kernel.
A local attacker can therefore use several unix sockets, in order
to create a denial of service.
This vulnerability is different from VIGILANCE-VUL-10158
(https://vigilance.fr/tree/1/10158), but its attack program is
similar.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/FreeBSD-denial-of-service-via-unix-socket-10159