syslogd on OpenBSD 2.9 through 3.2 does not change the source IP address of syslog packets when the machines IP addressed is changed without rebooting, e.g. via ifconfig, which can cause incorrect information to be sent to the syslog server.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Openbsd | Openbsd | 2.9 (including) | 2.9 (including) |
| Openbsd | Openbsd | 3.0 (including) | 3.0 (including) |
| Openbsd | Openbsd | 3.1 (including) | 3.1 (including) |
| Openbsd | Openbsd | 3.2 (including) | 3.2 (including) |
References
- http://archives.neohapsis.com/archives/bugtraq/2002-11/0272.html
- http://www.securityfocus.com/bid/6219
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10702
- http://archives.neohapsis.com/archives/bugtraq/2002-11/0272.html
- http://www.securityfocus.com/bid/6219
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10702