Important Notice
You may please click here to see your own member page, and update it

To see this working, head to your live site.

Denial-of-Service (DoS) attack by abusing Service Location Protocol (SLP) - Warning by CERT-IN

Original Sources:

(a) VMware Response to CVE-2023-29552 - Reflective Denial-of-Service (DoS) Amplification Vulnerability in SLP - VMware Security Blog - VMware

(b) New high-severity vulnerability (CVE-2023-29552) discovered in the Service Location Protocol (SLP) | Bitsight

(d) SLP flaw allows DDoS attacks with an amplification factor as high as 2200 times (securityaffairs.com)

1 comment

Comments (1)

Commander Mukesh Saini

May 01

“To protect against CVE-2023-29552, SLP should be disabled on all systems running on untrusted networks, like those directly connected to the Internet. If that is not possible, then firewalls should be configured to filter traffic on UDP and TCP port 427. This will prevent external attackers from accessing the SLP service.” concludes the report.

A Spring of Knowledge

for Learners of Cybersecurity, Privacy (PDP) and Techno-Legal Issues

Important Notice
You may please click here to see your own member page, and update it

Denial-of-Service (DoS) attack by abusing Service Location Protocol (SLP) - Warning by CERT-IN

Important Notice You may please click here to see your own member page, and update it

Denial-of-Service (DoS) attack by abusing Service Location Protocol (SLP) - Warning by CERT-IN

Important Notice
You may please click here to see your own member page, and update it