Lucene search

[email protected]CVE-2007-2242

HistoryApr 25, 2007 - 4:19 p.m.

CVE-2007-2242

2007-04-2516:19:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

ipv6

denial of service

remote attackers

crafted headers

network amplification

nvd

cve-2007-2242

6.2 Medium

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.154 Low

EPSS

Percentile

95.9%

JSON

The IPv6 protocol allows remote attackers to cause a denial of service via crafted IPv6 type 0 route headers (IPV6_RTHDR_TYPE_0) that create network amplification between two routers.

CPENameOperatorVersion
ietf:ipv6ietf ipv6eq*

CPE	Name	Operator	Version
ietf:ipv6	ietf ipv6	eq	*

References

docs.info.apple.com/article.html?artnum=305712

docs.info.apple.com/article.html?artnum=306375

lists.opensuse.org/opensuse-security-announce/2008-02/msg00002.html

openbsd.org/errata39.html#022_route6

openbsd.org/errata40.html#012_route6

secunia.com/advisories/24978

secunia.com/advisories/25033

secunia.com/advisories/25068

secunia.com/advisories/25083

secunia.com/advisories/25288

secunia.com/advisories/25691

secunia.com/advisories/25770

secunia.com/advisories/26133

secunia.com/advisories/26620

secunia.com/advisories/26651

secunia.com/advisories/26664

secunia.com/advisories/26703

secunia.com/advisories/28806

security.freebsd.org/advisories/FreeBSD-SA-07:03.ipv6.asc

www.kb.cert.org/vuls/id/267289

www.mandriva.com/security/advisories?name=MDKSA-2007:171

www.mandriva.com/security/advisories?name=MDKSA-2007:196

www.mandriva.com/security/advisories?name=MDKSA-2007:216

www.novell.com/linux/security/advisories/2007_51_kernel.html

www.redhat.com/support/errata/RHSA-2007-0347.html

www.secdev.org/conf/IPv6_RH_security-csw07.pdf

www.securityfocus.com/archive/1/467939/30/6690/threaded

www.securityfocus.com/archive/1/471457

www.securityfocus.com/bid/23615

www.securitytracker.com/id?1017949

www.ubuntu.com/usn/usn-486-1

www.ubuntu.com/usn/usn-508-1

www.vupen.com/english/advisories/2007/1563

www.vupen.com/english/advisories/2007/2270

www.vupen.com/english/advisories/2007/3050

exchange.xforce.ibmcloud.com/vulnerabilities/33851

issues.rpath.com/browse/RPL-1310

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9574

6.2 Medium

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.154 Low

EPSS

Percentile

95.9%

JSON

Related for CVE-2007-2242

securityvulns2 ubuntucve1 nessus15 openvas15 freebsd1 prion1 veracode1 cert1 freebsd_advisory1 fedora2 ubuntu2 redhat1 centos1 suse2 oraclelinux1