Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-2476

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2008-2476
Last Modified 29 Oct 2012 11:11:59
Published 03 Oct 2008 11:07:10
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-2476

Summary

The IPv6 Neighbor Discovery Protocol (NDP) implementation in (1) FreeBSD 6.3 through 7.1, (2) OpenBSD 4.2 and 4.3, (3) NetBSD, (4) Force10 FTOS before E7.7.1.1, (5) Juniper JUNOS, and (6) Wind River VxWorks 5.x through 6.4 does not validate the origin of Neighbor Discovery messages, which allows remote attackers to cause a denial of service (loss of connectivity) or read private network traffic via a spoofed message that modifies the Forward Information Base (FIB).

Vulnerable Systems

Operating System

  • Force10 Ftos

  • Freebsd 6.3

  • Freebsd 7.1

  • Juniper Jnos

  • Netbsd

  • Openbsd 4.2

  • Openbsd 4.3

  • Windriver Vxworks 5

  • Windriver Vxworks 5.5

  • Windriver Vxworks 6.4


References

CONFIRM - http://www.kb.cert.org/vuls/id/MAPG-7H2S68

CONFIRM - http://www.kb.cert.org/vuls/id/MAPG-7H2RY7

CERT-VN - VU#472363

MISC - https://www.juniper.net/alerts/viewalert.jsp?actionBtn=Search&txtAlertNumber=PSN-2008-09-036&viewMode=view

XF - multiple-vendors-ndp-dos(45601)

VUPEN - ADV-2009-0633

VUPEN - ADV-2008-2752

VUPEN - ADV-2008-2751

VUPEN - ADV-2008-2750

SECTRACK - 1021132

SECTRACK - 1021109

BID - 31529

OPENBSD - [4.3] 006: SECURITY FIX: October 2, 2008

OPENBSD - [4.2] 015: SECURITY FIX: October 2, 2008

CONFIRM - http://support.apple.com/kb/HT3467

SECTRACK - 1020968

FREEBSD - FreeBSD-SA-08:10

SECUNIA - 32406

SECUNIA - 32117

SECUNIA - 32116

SECUNIA - 32112

NETBSD - NetBSD-SA2008-013

SECUNIA - 32133


Last Updated: 27 May 2016 10:47:14