FreeBSD : iperf3 -- buffer overflow (d6bbf2d8-2cfc-11e6-800b-080027468580)
High Nessus Plugin ID 91527
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionESnet reports :
A malicious process can connect to an iperf3 server and, by sending a malformed message on the control channel, corrupt the server process's heap area. This can lead to a crash (and a denial of service), or theoretically a remote code execution as the user running the iperf3 server. A malicious iperf3 server could potentially mount a similar attack on an iperf3 client.
SolutionUpdate the affected packages.