Intrusion Prevention

Systemd.Resolved.dns_packet_read_type_window.DoS

Description

This indicates an attack attempt to exploit a Denial of Service vulnerability in Systemd.
The vulnerability is due to lack of size checking when the vulnerable software attempts to access a specially crafted DNS response packet. An attacker can exploit this to cause a denial of service condition on the affected system.

Affected Products

Systemd 223 through 235

Impact

Denial of Service: Remote attackers can crash vulnerable systems.

Recommended Actions

Apply patch available from the vendor.
https://github.com/systemd/systemd/pull/7184

CVE References

CVE-2017-15908