Vulnerability Scanning Solutions, LLC.
Home
Our Process
Residential
Corporate
What We Scan For
Sample Report
Client List
Terms
Contact Us
What We Scan For
Family: Denial of Service --> Category: kill_host

Malformed ICMP Packets May Cause a Denial of Service (SCTP) Vulnerability Scan


Vulnerability Scan Summary
Kills the remote Linux with a bad ICMP packet

Detailed Explanation for this Vulnerability Test

Synopsis :

It is possible to crash the remote host by sending it malformed ICMP packets.

Description :

Linux Kernels older than version 2.6.13 contains a bug which may allow an
attacker to cause a NULL pointer dereference by sending malformed ICMP packets,
thus resulting in a kernel panic.

This flaw is present only if SCTP support is enabled on the remote host.

A possible hacker to make this host crash continuously, thus preventing legitimate
users from using it.

See also :

http://oss.sgi.com/projects/netdev/archive/2005-07/msg00142.html

Solution :

Ugprade to Linux 2.6.13 or newer, or disable SCTP support.

Threat Level:

Medium / CVSS Base Score : 5
(AV:R/AC:L/Au:NR/C:N/A:C/I:N/B:A)

Click HERE for more information and discussions on this network vulnerability scan.

VSS, LLC.

P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.