Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Gentoo: 200401-02 Low Severity: Honeyd Remote Detection Threat

gentoo
Calendar Grey January 21, 2004
Dist Gentoo Esm H88
Uncover the Gentoo GLSA-202301-15 notification regarding the Honeyd vulnerability related to remote detection and required security patches.
Identification of Honeyd installations allows an adversary to launch attacks specifically against Honeyd

Summary

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Gentoo Linux Security Advisory                           GLSA 200401-02
~                                             https://security.gentoo.org/

~  Severity: Low
~     Title: Honeyd remote detection vulnerability via a probe packet
~      Date: January 21, 2004
~      Bugs: #38934
~        ID: 200401-02


Synopsis
=======
Identification of Honeyd installations allows an adversary to launch
attacks specifically against Honeyd. No remote root exploit is currently
known.

Background
=========
Honeyd is a virtual honeypot daemon that can simulate virtual hosts on
unallocated IP addresses.

==========
A bug in handling NMAP fingerprints caused Honeyd to reply to TCP
packets with both the SYN and RST flags set. Watching for replies, it is
possible to detect IP addresses simulated by Honeyd.

Impact
=====
Although there are no public exploits known for Honeyd, the detection of
Honeyd IP addresses may in some cases be undesirable.

Workaround
======...
Read the Full Advisory
Topics%20covered

Topics Covered

security advisory Gentoo low severity attack risk Honeyd remote detection

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Severity
low
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory Gentoo low severity attack risk Honeyd remote detection

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here