You only need 60 bytes to hose Linux’s rpcbind

Sigh … people just leave it on without blocking the port world+dog knows it uses. So patch it or close it, people A 60 byte payload sent to a UDP socket to the rpcbind service can crash its host by filling up the target’s memory.… The Register – Security Secure… read more →