Splunkd Remote Denial of Service Vulnerability (SPL-40645)
Description: A remote denial of service vulnerability was identified in Splunk instances configured to receive data from other Splunk instances over an SSL-encrypted channel. An attacker could use a specially crafted packet to cause a remote instance of Splunk configured to receive data over an SSL-encrypted channel to crash.
Versions Affected: Splunk 4.0 - 4.2.2
Credit: Splunk would like to credit the Commonwealth Bank of Australia's CBAcert team with the responsible disclosure of this issue.