Fortinet FortiOS 5.0.x < 5.0.1 Multiple DoS
Medium Nessus Plugin ID 85740
SynopsisThe remote host is affected by multiple denial of service vulnerabilities.
DescriptionThe remote host is running a version of Fortinet FortiOS 5.0.x prior to 5.0.1. It is, therefore, affected by multiple denial of service vulnerabilities :
- A flaw exists related to the handling of SSH traffic. An unauthenticated, remote attacker can exploit this to crash the proxyworker service. (VulnDB 125025)
- A flaw exists in the WAD daemon that is triggered during the handling of HTTP 0.9 traffic. An unauthenticated, remote attacker can exploit this to crash the daemon.
SolutionUpgrade to Fortinet FortiOS 5.0.1 or later.