CVE-2000-0314

Name of the Vulnerable Software and Affected Versions NetBSD version 1.3.3 Linux systems (affected versions not specified)

Description The issue allows local users to flood other systems by exploiting the traceroute command. This is achieved by providing a large waittime option, which is not properly parsed and results in setting the time delay for sending packets to zero.

Recommendations For NetBSD version 1.3.3, avoid using the -w option with large values in the traceroute command until a fix is available. For Linux systems, restrict the use of the traceroute command with the -w option to prevent flooding attacks, and consider implementing rate limiting on outgoing packets.