Malformed ICMP Packets May Cause A Denial Of Service (SCTP) Network Vulnerability

Summary

It is possible to crash the remote host by sending it malformed ICMP packets. Description : Linux Kernels older than version 2.6.13 contains a bug which may allow an attacker to cause a NULL pointer dereference by sending malformed ICMP packets, thus resulting in a kernel panic. This flaw is present only if SCTP support is enabled on the remote host. An attacker to make this host crash continuously, thus preventing legitimate users from using it.

Solution

Ugprade to Linux 2.6.13 or newer, or disable SCTP support.

References

http://oss.sgi.com/projects/netdev/archive/2005-07/msg00142.html

Updated on 2015-03-25

Severity

Classification

CVSS Base Score: 7.8
AV:N/AC:L/Au:N/C:N/I:C/A:N

Related Vulnerabilities

CUPS Subscription Incorrectly uses Guest Account DoS Vulnerability
Azeotech DAQFactory NETB Datagram Parsing Stack Buffer Overflow Vulnerability
Adobe Flash Player/Air Multiple DoS Vulnerabilities - Aug09 (Win)
Allegro Software RomPager 2.10 Denial of Service
Apache APR-Utils XML Parser Denial of Service Vulnerability

Malformed ICMP Packets May Cause a Denial of Service (SCTP)

Take action and discover your vulnerabilities