CVE Catalog

CVE-2000-0489

Low
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.70%

48th percentile — higher than 48% of all known CVEs

Summary

FreeBSD, NetBSD, and OpenBSD allow an attacker to cause a denial of service by creating a large number of socket pairs using the socketpair function, setting a large buffer size via setsockopt, then writing large buffers.

Risk Assessment

An attacker can disrupt system services, leading to downtime and loss of availability for users.

Recommendation

It is recommended to monitor socket usage and implement limits on the number of socket pairs created to minimize the risk of denial of service.

Original NVD description (English source)

FreeBSD, NetBSD, and OpenBSD allow an attacker to cause a denial of service by creating a large number of socket pairs using the socketpair function, setting a large buffer size via setsockopt, then writing large buffers.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS