XDMCP Infinite Loop Denial of Service Vulnerability

Solution:
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com.

Altering the code in OpenDis.c to check for mask being 0 will eliminate this problem. Prefacing the while() loop with a check for mask being 0 is one way to do this, as is adding a check in the while loop for values of mask == 0.



 

Privacy Statement
Copyright 2010, SecurityFocus