SOCKS4 Server Recursive Connection Remote DoS

high Nessus Plugin ID 17155

Language:

Synopsis

The remote SOCKS service is prone to a denial of service attack.

Description

It is possible to connect to the SOCKS4 server through itself. An attacker can leverage this issue to saturate the host's CPU, memory or file descriptors.

Solution

Reconfigure the service so that it refuses connections to itself.

Plugin Details

Severity: High

ID: 17155

File Name: socks4_loop_connect.nasl

Version: 1.12

Type: remote

Family: Firewalls

Published: 2/20/2005

Updated: 8/13/2018

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: High

Base Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Detections

Analytics