NetKit (biff+comsat) in.comsat Message Flood Remote DoS
Local Access Required,
Remote / Network Access
Denial of Service,
Loss of Availability
The in.comsatd daemon on many flavors of unix contains a flaw that may allow a local user or LAN connected user to carry out a denial of service. The issue is triggered when a local attacker sends a huge number of username lines very quickly to the open comsat daemon, which will crash the server, resulting in loss of availability.
Upgrade to version 0.16 or higher, as it has been reported to fix this vulnerability. It is also possible to temporarily work around the flaw by implementing the following workaround: Disable the in.comsat daemon.