Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSD275B845E-F56C-11DB-8163-000E0C2E438A
HistoryApr 26, 2007 - 12:00 a.m.

FreeBSD -- IPv6 Routing Header 0 is dangerous

2007-04-2600:00:00
vuxml.freebsd.org
13

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.154 Low

EPSS

Percentile

95.9%

JSON

Problem Description
There is no mechanism for preventing IPv6 routing headers
from being used to route packets over the same link(s) many
times.
Impact
An attacker can “amplify” a denial of service attack against
a link between two vulnerable hosts; that is, by sending a
small volume of traffic the attacker can consume a much larger
amount of bandwidth between the two vulnerable hosts.
An attacker can use vulnerable hosts to “concentrate” a
denial of service attack against a victim host or network;
that is, a set of packets sent over a period of 30 seconds
or more could be constructed such that they all arrive at
the victim within a period of 1 second or less over a
period of 30 seconds or more could be constructed such that
they all arrive at the victim within a period of 1 second or
less.
Other attacks may also be possible.
Workaround
No workaround is available.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchfreebsd= 6.2UNKNOWN
FreeBSDanynoarchfreebsd< 6.2_4UNKNOWN

Related

securityvulns 2
ubuntucve 1
cve 1
prion 1
veracode 1
nessus 15
openvas 15
freebsd_advisory 1
cert 1
fedora 2
redhat 1
centos 1
ubuntu 2
suse 2
oraclelinux 1
securityvulns
securityvulns
FreeBSD Security Advisory FreeBSD-SA-07:03.ipv6
2007-04-27 00:00:00
Linux and BSD based Unix system IPv6 traffic amplification
2007-04-27 00:00:00
ubuntucve
ubuntucve
CVE-2007-2242
2007-04-25 00:00:00
cve
cve
CVE-2007-2242
2007-04-25 16:19:00
prion
prion
Code injection
2007-04-25 16:19:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:18:32
nessus
nessus
Mac OS X 10.4.x < 10.4.10 IPv6 Type 0 Route Headers DoS
2007-06-21 00:00:00
Fedora Core 5 : kernel-2.6.20-1.2316.fc5 (2007-483)
2007-05-02 00:00:00
Fedora Core 6 : kernel-2.6.20-1.2948.fc6 (2007-482)
2007-05-02 00:00:00
openvas
openvas
FreeBSD Security Advisory (FreeBSD-SA-07:03.ipv6.asc)
2008-09-04 00:00:00
FreeBSD Security Advisory (FreeBSD-SA-07:03.ipv6.asc)
2008-09-04 00:00:00
Fedora Update for kernel FEDORA-2007-482
2009-02-27 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-07:03.ipv6
2007-04-26 00:00:00
cert
cert
IPv6 Type 0 Route Headers allow sender to control routing
2007-06-01 00:00:00
fedora
fedora
[SECURITY] Fedora Core 6 Update: kernel-2.6.20-1.2948.fc6
2007-05-01 16:21:51
[SECURITY] Fedora Core 5 Update: kernel-2.6.20-1.2316.fc5
2007-05-01 16:32:15
redhat
redhat
(RHSA-2007:0347) Important: kernel security and bug fix update
2007-05-16 00:00:00
centos
centos
kernel security update
2007-05-20 02:21:06
ubuntu
ubuntu
Linux kernel vulnerabilities
2007-08-31 00:00:00
Linux kernel vulnerabilities
2007-07-18 00:00:00
suse
suse
remote denial of service in kernel
2007-09-06 17:18:55
local privilege escalation in kernel
2008-02-07 11:18:53
oraclelinux
oraclelinux
Important: kernel security and bug fix update
2007-06-26 00:00:00

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.154 Low

EPSS

Percentile

95.9%

JSON
Related for 275B845E-F56C-11DB-8163-000E0C2E438A
securityvulns2ubuntucve1cve1prion1veracode1nessus15openvas15freebsd_advisory1cert1fedora2redhat1centos1ubuntu2suse2oraclelinux1