CVE-2023-29487

Name of the Vulnerable Software and Affected Versions Heimdal Thor agent versions 3.4.2 and before on Windows Heimdal Thor agent versions 2.6.9 and before on macOS

Description An issue in the Heimdal Thor agent allows attackers to cause a denial of service (DoS) via the Threat To Process Correlation threat prevention module. The vendor asserts this is not a valid vulnerability, as the lack of process identification in DNS logs is falsely categorized as a DoS issue. Their DNS Security for Endpoint solution includes an optional feature to provide extra information on the originating process that made a DNS request.

Recommendations For Heimdal Thor agent versions 3.4.2 and before on Windows, consider disabling the Threat To Process Correlation threat prevention module as a temporary workaround until the issue is resolved. For Heimdal Thor agent versions 2.6.9 and before on macOS, consider disabling the Threat To Process Correlation threat prevention module as a temporary workaround until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.