NuFW Remote TLS Connection Handling Denial of Service Vulnerability

info
discussion
exploit
solution
references

NuFW Remote TLS Connection Handling Denial of Service Vulnerability

NuFW is susceptible to a remote denial-of-service vulnerability. This issue is due to the application's failure to properly handle excessive authentication requests.

This issue results in the 'nuauth' module failing to respond to new authentication requests, denying service to further users.

NuFW versions prior to 1.0.21 are affected by this issue.