Rsyslog.Stack.Buffer.Overflow
Description
This indicates an attack attempt against a Buffer Overflow vulnerability in rsyslog.
The vulnerability is caused by an error when the software handles specially crafted log message data. It allows a remote attacker to shutdown a remote log daemon.
Affected Products
rsyslog version 4.6.0 to 4.6.7 inclusive.
rsyslog version 5.2.0 to 5.8.4 inclusive.
Impact
Denial of Service: Remote attackers can crash vulnerable systems.
Recommended Actions
Update to 4.6.8 or 5.8.5
http://www.rsyslog.com/rsyslog-5-8-5-v5-stable/
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |