TITLE:
Libnids TCP Reassembly Buffer Overflow Vulnerability

SECUNIA ADVISORY ID:
SA10076

VERIFY ADVISORY:
http://www.secunia.com/advisories/10076/

CRITICAL:
Moderately critical

IMPACT:
DoS, System access

WHERE:
From remote

SOFTWARE:
Libnids 1.x

DESCRIPTION:
A vulnerability has been reported in Libnids, which potentially can
be exploited by malicious people to compromise a vulnerable system.

The vulnerability is caused due to a boundary error in the TCP
reassembly. This may be exploited to compromise a system by sending
overly long, specially crafted TCP packets to an application linked
to Libnids and using the vulnerable code.

The vulnerability has been reported in versions 1.17 and prior.

SOLUTION:
Update to version 1.18:
http://prdownloads.sourceforge.net/libnids/libnids-1.18.tar.gz?download

REPORTED BY / CREDITS:
Robert Watson

----------------------------------------------------------------------

Secunia recommends that you verify all advisories you receive, by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

Contact details:
Web	: http://www.secunia.com/
E-mail	: support@secunia.com
Tel	: +45 7020 5144
Fax	: +45 7020 5145

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://www.secunia.com/sec_adv_unsubscribe/?email=packet@packetstormsecurity.org

----------------------------------------------------------------------