Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0323

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2001-0323
Last Modified 10 Oct 2013 09:11:45
Published 02 Jun 2001 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0323

Summary

The ICMP path MTU (PMTU) discovery feature in various UNIX systems allows remote attackers to cause a denial of service by spoofing "ICMP Fragmentation needed but Don't Fragment (DF) set" packets between two target hosts, which could cause one host to lower its MTU when transmitting to the other host.

Vulnerable Systems


References

XF - icmp-pmtu-dos

BUGTRAQ - 20010115 ICMP fragmentation required but DF set problems.

CONFIRM - http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html

MANDRIVA - MDVSA-2013:150


Last Updated: 27 May 2016 10:54:56