2 matches found
CVE-2010-2522
CVE-2010-2522 concerns the mipv6d/UMIP 0.4 stack where the mipv6 daemon does not verify that netlink messages originate from the kernel, enabling local users to spoof netlink socket communication by sending a crafted unicast message. This vulnerability is documented across multiple advisories (op...
CVE-2010-2523
CVE-2010-2523 analyzes a vulnerability in the mipv6d (UMIP 0.4) daemon, where multiple buffer overflows in ha.c can be triggered by crafted ND_OPT_PREFIX_INFORMATION or ND_OPT_HOME_AGENT_INFO packets. Affected product: mipv6d within UMIP 0.4. Root cause: buffer overflows in ha.c when processing s...