Computer Security
[EN] securityvulns.ru no-pyccku


FreeBSD IPv6 Neighbor Discovery Protocol security vulnerability
Published:03.10.2008
Source:
SecurityVulns ID:9327
Type:remote
Threat Level:
5/10
Description:A malicious IPv6 node sharing a common router but on a different physical segment from another node may be able to spoof Neighbor Discovery messages, allowing it to update router information for the victim node.
CVE:CVE-2008-2476 (The IPv6 Neighbor Discovery Protocol (NDP) implementation in (1) FreeBSD 6.3 through 7.1, (2) OpenBSD 4.2 and 4.3, (3) NetBSD, (4) Force10 FTOS before E7.7.1.1, (5) Juniper JUNOS, and (6) Wind River VxWorks 5.x through 6.4 does not validate the origin of Neighbor Discovery messages, which allows remote attackers to cause a denial of service (loss of connectivity) or read private network traffic via a spoofed message that modifies the Forward Information Base (FIB).)
Original documentdocumentFREEBSD, FreeBSD Security Advisory FreeBSD-SA-08:10.nd6 (03.10.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod