CVE-2006-0967

Name of the Vulnerable Software and Affected Versions NCP Network Communication Secure Client version 8.11 Build 146

Description The issue allows local users to cause a denial of service, resulting in excessive memory usage and CPU utilization. This can be achieved by flooding the system with arbitrary UDP datagrams to ports 0 through 65000. Initially reported as a buffer overflow, it is noted that this term does not typically apply to flooding attacks.

Recommendations For NCP Network Communication Secure Client version 8.11 Build 146, consider restricting access to UDP ports 0 through 65000 to minimize the risk of denial of service attacks. As a temporary workaround, implement rate limiting on incoming UDP datagrams to prevent excessive resource utilization.