The vulnerabilities of the GRE and GRE6 tunneling protocols, related to insufficient source checking of the communication channel, allow attackers to execute attacks such as “spoofing of trusted objects”.
The vulnerabilities of the tunneling protocols GRE and GRE6 are related to insufficient verification of the source of the communication channel. Exploiting these vulnerabilities allows a malicious actor to carry out “host substitution” attacks by sending a specially crafted packet with two IP...